High Priority Position: Cyber Security Engineer (Vulnerability Analyst) with Rapid7 Nexpose/Tenable Nessus/Qualys, System Admin, Python, ServiceNow Exp. at NC/MI || Hybrid preferred but consider remote candidates
Babu S
Hope you are doing great today...
This is BABU, BDM FROM PANTAR SOLUTIONS INC, we are an Information Technology and Business Consulting firm specializing in Project-based Solutions and Professional Staffing Services. Please have a look at below position which is with our Client and let me know your interest ASAP. I would really appreciate if you could send me your MOST RECENT UPDATED RESUME:
Title: Cyber Security Engineer (Vulnerability Analyst) with Rapid7 Nexpose/Tenable Nessus/Qualys, System Admin, Python, ServiceNow Exp.
Work Location: Charlotte, NC or Detroit, MI (Hybrid preferred but consider remote candidates)
Duration: 1+ year with potential extensions
Vulnerability Analyst
Top Skills:
** The ideal candidate for this role will have a strong technical foundation in system administration (Unix or Windows), familiarity with networking and cyber security, and hands-on experience with infrastructure scanning tools.
** Cloud, container, and/or python development experience is a plus. The candidate must be equally comfortable speaking with developers as well as infrastructure teams about vulnerabilities and configuration compliance.;
** Experience with enterprise vulnerability management platforms such as Rapid7 Nexpose, Tenable Nessus, or Qualys;
** Experience with configuration compliance and/or DISA STIGs desired;
** Must have excellent communication skills – Proactive – independent, self-starter – independent worker who will take initiative and work well collaboratively.
Job Description:
The Vulnerability Analyst will support the configuration compliance and infrastructure vulnerability management programs with identifying, reporting, and enabling remediation of vulnerability and compliance findings. The ideal candidate for this role will have a strong technical foundation in system administration (Unix or Windows), familiarity with networking and cyber security, and hands-on experience with infrastructure scanning tools. Cloud, container, and/or python development experience is a plus. The candidate must be equally comfortable speaking with developers as well as infrastructure teams about vulnerabilities and configuration compliance.
Reporting into the Director of Vulnerability Management, the Vulnerability Analyst will be accountable for the identification, reporting and remediation of vulnerability and compliance findings within their area of responsibility.
Principal Expectations:
- Maintain awareness of the latest critical information security vulnerabilities, threats, and exploits
- Assist in facilitating vulnerability and compliance scanning and reporting activities, as directed by senior team members, ensuring accurate & timely identification, reporting, and escalation.
- Leverage vulnerability management reports and metrics, to drive remediation of vulnerabilities for specified areas of the environment
- Communicate with Ally technology staff on vulnerability management and remediation of key vulnerabilities. Assist teams with understanding the vulnerability, possible remediations, and assist with false positives or mitigation solutions.
- Identify enhancements to tools, standards, and processes to enable continuous process improvement and automation of existing processes.
- In zero-day events, iterate through VM lifecycle – creatively assist with time-sensitive escalations, developing new types of reports, and perform special investigations.
Required Skillsets:
- Bachelor’s degree in a related field (Computer Science, Engineering, Information Systems, etc.) or the equivalent combination of training and experience
- 3+ years of experience in technology or cyber security
- Mid-level knowledge of Windows or Linux system administration and related security configurations, networking, and cyber security
- Intermediate Python development experience preferred
- Virtualization, cloud, and container experience preferred
- Working knowledge of security risk oversight, CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), and technical security vulnerability remediation/mitigation
- Experience with enterprise vulnerability management platforms such as Rapid7 Nexpose, Tenable Nessus, or Qualys
- Experience with ServiceNow preferred
- Skilled at analyzing IT/VM data sets using tools such as Excel or Power BI and presenting in a meaningful, digestible format for stakeholders and leadership teams
- Excellent communications skills (verbal and written) are required. Adept at communicating concepts to diverse audiences with varying skill sets
- A self-motivated, detail-orientated individual with the ability to work independently as well as function as an integral part of a team and take initiative and ownership in a fast-paced environment.
Mandatory Skills:
Solid working experience and knowledge of Unix operating systems or Windows OS. Understanding of databases, web technologies, and network devices
Experience with vulnerability scanners
Strong verbal and written communications skills Intermediate competency with spreadsheets Intermediate competency writing scripts using python
Able to write documentation
Ability to identify and solve problems
Able to organize meetings, and translate discussed decisions into actions Self-directing with sense of ownership
Desired Skills:
Ability to design and document processes
Ability to teach others their area or responsibility
PLEASE NOTE:
If for any reason this does not interest you or you felt uncomfortable by any part of this email, I sincerely apologize. Please consider this E-mail as a request for referrals and feel free in forward this email to anyone whom you might find a fit.