Qualys Threat and Vulnerability Management Cyber Security Advisor

About The Position

Requirements

• 6+ years Security-Threat and Vulnerability-Vulnerability Remediation to include Researching, evaluating, scanning, reporting out on cyber security threats, incidents, and vulnerabilities (automated asset discovery, vulnerability management, threat prioritization, and remediation)
• Must have Hands-on experience working with Vulnerability assessment tool, Qualys VMDR.
• Must have client-facing experience

Nice To Haves

• Prisma Cloud experience is an advantage to have
• These other Vulnerability tools is highly ideal: Nexpose, Nessus, vulnerability response (ServiceNow), and/or Splunk
• Strategic thinker with attention to technical detail
• Strong communication and leadership skills
• Collaborative mindset with a focus on enablement and mentorship

Responsibilities

• Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
• Perform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
• Maintaining appropriate documentation that defines the Threat & Vulnerability Management Program, Policy and Procedures
• Participated in the calls to resolve information security incidents, including internal events and targeted threats
• Research, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilities
• Work with the stakeholders to develop and maintain a vulnerability intelligence process that monitors for emerging systems vulnerabilities
• Prioritize the remediation of vulnerabilities based on their characteristics, such as threat intelligence, business criticality, and exploit maturity
• Define minimum standards in relation to threat management and monitoring compliance across the businesses
• Take responsibility for scheduling, detecting, and analyzing vulnerabilities and vulnerability-related activity affecting the organization domain
• Help create prioritized overviews of cyber vulnerabilities by putting them in the context of IT services and business applications, leading to remediation actions by the respective parties
• Conduct deep-dive analysis on attacks and share actionable data with partner teams
• Ensure the accurate and timely release of vulnerability metrics
• Report on areas of non-compliance against Policy and/or Group Standards

Benefits

• This position may also be eligible for incentive compensation based on individual and/or company performance.
• This position is eligible for company benefits that will depend on the nature of the role offered. Company benefits may include medical, dental, and vision insurance, flexible spending or health savings account, life and AD&D insurance, short and long term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally-required benefits.