Vulnerability Management Analyst
at Radancy
Remote, Oregon, USA -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 05 Feb, 2025 | USD 85000 Annual | 06 Nov, 2024 | N/A | Vulnerability Management,Testing Practices,Communication Skills,Qualys,Owasp,Assessment Tools,Strategy,Metasploit,Nist,Microsoft Office,Linux | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
The Vulnerability Management Analyst is part of our Security Operations (‘SecOps’) team. This role is responsible for coordinating and maintaining vulnerability management for IT systems, assessing technology and suppliers, and working with teams to remediate issues. We’re looking for an enthusiastic, hardworking, and creative team member to keep our company secure.
QUALIFICATIONS AND SKILLS:
Familiarity with vulnerability assessment tools and manual testing practices (Qualys, InsightVM, Metasploit, Burpsuite, Veracode)
1-3 years performing vulnerability management
- Ability to plan, organize, prioritize and independently solve problems seeking help when necessary
- Strong communication skills, very proactive and results oriented
- Knowledge of software development processes and concepts
- Understanding of OWASP, USCERT, NIST, ISO 27001/270002 a plus
- Ability to meet deadlines.
- Familiarity with Linux
- Proficient with Microsoft Office
- Ability to stay calm under pressure and the ability to set customer expectations and clearly follow through to meet them.
Company Values: At Radancy, we are dedicated to the core values that guide our work and culture:
-
Innovative Spirit Innovation leads the way. We have a rich history of developing and delivering what’s new and next to lead the industry forward.
- Rewarding Impact Work that matters. We strengthen organizations with transformative solutions that connect people around the world to careers that matter.
- Performance Driven Success drives results. We use data and insights to inform strategy and maximize performance for our customers.
- Supportive Teams Collaboration is our backbone. We cultivate an environment that inspires our team members to deliver industry-defining solutions.
Using vulnerability testing tools for systems vulnerabilities and working with security service providers, scheduling and creating scans, working with tech teams to remediate issues
- Document, prioritize and formally report asset and vulnerability state, along with remediation recommendations and validation
- Working with clients to resolve public facing vulnerabilities in our applications and associated infrastructure
- Regularly research and learn new TTPs in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary
- Create metrics for management reporting
- Coordinate with internal and external auditors
- Coordinate Security RFP responses
- Maintain document repository and audit book
- Monitor for new vulnerabilities (US-CERT, NVD, CVE, Twitter)
- Maintains monthly status reports for RFPs/Vulnerabilities/Security Training
- Maintains ticketing system
- Tracks and coordinates SecOps projects
- Develop and maintain a calendar for the above activities
- Improve SecOps efficiency, maintain workflows and collaboration
- Participates in finding process improvement opportunities, provides solutions and participates in implementation of changes
Responsibilities:
Using vulnerability testing tools for systems vulnerabilities and working with security service providers, scheduling and creating scans, working with tech teams to remediate issues
Document, prioritize and formally report asset and vulnerability state, along with remediation recommendations and validation
- Working with clients to resolve public facing vulnerabilities in our applications and associated infrastructure
- Regularly research and learn new TTPs in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary
- Create metrics for management reporting
- Coordinate with internal and external auditors
- Coordinate Security RFP responses
- Maintain document repository and audit book
- Monitor for new vulnerabilities (US-CERT, NVD, CVE, Twitter)
- Maintains monthly status reports for RFPs/Vulnerabilities/Security Training
- Maintains ticketing system
- Tracks and coordinates SecOps projects
- Develop and maintain a calendar for the above activities
- Improve SecOps efficiency, maintain workflows and collaboration
- Participates in finding process improvement opportunities, provides solutions and participates in implementation of changes.
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Other
Other
Graduate
Proficient
1
Remote, USA