Vulnerability Management Analyst

at  Radancy

Remote, Oregon, USA -

Start DateExpiry DateSalaryPosted OnExperienceSkillsTelecommuteSponsor Visa
Immediate05 Feb, 2025USD 85000 Annual06 Nov, 2024N/AVulnerability Management,Testing Practices,Communication Skills,Qualys,Owasp,Assessment Tools,Strategy,Metasploit,Nist,Microsoft Office,LinuxNoNo
Add to Wishlist Apply All Jobs
Required Visa Status:
CitizenGC
US CitizenStudent Visa
H1BCPT
OPTH4 Spouse of H1B
GC Green Card
Employment Type:
Full TimePart Time
PermanentIndependent - 1099
Contract – W2C2H Independent
C2H W2Contract – Corp 2 Corp
Contract to Hire – Corp 2 Corp

Description:

The Vulnerability Management Analyst is part of our Security Operations (‘SecOps’) team. This role is responsible for coordinating and maintaining vulnerability management for IT systems, assessing technology and suppliers, and working with teams to remediate issues. We’re looking for an enthusiastic, hardworking, and creative team member to keep our company secure.

QUALIFICATIONS AND SKILLS:

  • Familiarity with vulnerability assessment tools and manual testing practices (Qualys, InsightVM, Metasploit, Burpsuite, Veracode)

  • 1-3 years performing vulnerability management

  • Ability to plan, organize, prioritize and independently solve problems seeking help when necessary
  • Strong communication skills, very proactive and results oriented
  • Knowledge of software development processes and concepts
  • Understanding of OWASP, USCERT, NIST, ISO 27001/270002 a plus
  • Ability to meet deadlines.
  • Familiarity with Linux
  • Proficient with Microsoft Office
  • Ability to stay calm under pressure and the ability to set customer expectations and clearly follow through to meet them.

Company Values: At Radancy, we are dedicated to the core values that guide our work and culture:
-

Innovative Spirit Innovation leads the way. We have a rich history of developing and delivering what’s new and next to lead the industry forward.

  • Rewarding Impact Work that matters. We strengthen organizations with transformative solutions that connect people around the world to careers that matter.
  • Performance Driven Success drives results. We use data and insights to inform strategy and maximize performance for our customers.
  • Supportive Teams Collaboration is our backbone. We cultivate an environment that inspires our team members to deliver industry-defining solutions.

Using vulnerability testing tools for systems vulnerabilities and working with security service providers, scheduling and creating scans, working with tech teams to remediate issues

  • Document, prioritize and formally report asset and vulnerability state, along with remediation recommendations and validation
  • Working with clients to resolve public facing vulnerabilities in our applications and associated infrastructure
  • Regularly research and learn new TTPs in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary
  • Create metrics for management reporting
  • Coordinate with internal and external auditors
  • Coordinate Security RFP responses
  • Maintain document repository and audit book
  • Monitor for new vulnerabilities (US-CERT, NVD, CVE, Twitter)
  • Maintains monthly status reports for RFPs/Vulnerabilities/Security Training
  • Maintains ticketing system
  • Tracks and coordinates SecOps projects
  • Develop and maintain a calendar for the above activities
  • Improve SecOps efficiency, maintain workflows and collaboration
  • Participates in finding process improvement opportunities, provides solutions and participates in implementation of changes

Responsibilities:

  • Using vulnerability testing tools for systems vulnerabilities and working with security service providers, scheduling and creating scans, working with tech teams to remediate issues

  • Document, prioritize and formally report asset and vulnerability state, along with remediation recommendations and validation

  • Working with clients to resolve public facing vulnerabilities in our applications and associated infrastructure
  • Regularly research and learn new TTPs in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary
  • Create metrics for management reporting
  • Coordinate with internal and external auditors
  • Coordinate Security RFP responses
  • Maintain document repository and audit book
  • Monitor for new vulnerabilities (US-CERT, NVD, CVE, Twitter)
  • Maintains monthly status reports for RFPs/Vulnerabilities/Security Training
  • Maintains ticketing system
  • Tracks and coordinates SecOps projects
  • Develop and maintain a calendar for the above activities
  • Improve SecOps efficiency, maintain workflows and collaboration
  • Participates in finding process improvement opportunities, provides solutions and participates in implementation of changes.

REQUIREMENT SUMMARY

Min:N/AMax:5.0 year(s)

Information Technology/IT

IT Software - Other

Other

Graduate

Proficient

1

Remote, USA