Vulnerability Analyst
Analyst will help develop the clients next gen vulnerability management program including formalized assessment criteria, integration with asset inventory, enterprise vulnerability scanning and remediation tracking and governance.
•Work with outside vendors to coordinate pen tests and review and interpret findings to the various system owners and track remediation of any findings;
•Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood and impact to the bank;
•Leverage inventory and patch management systems to provide reporting and governance for vulnerability impact and remediation progress;
•Provide technical assistance for understanding vulnerability remediation and will serve as a subject matter expert on remediation;
•Manage and maintain vulnerability toolset.
•Solid Windows Operating System knowledge.
•Fundamental understanding of Networking.
Minimum Qualifications and Requirements
•4+ years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.
•Minimum four years of security and vulnerability management or penetration testing techniques and validation of results.
•Experience in deploying and operating vulnerability scanning infrastructure and services
•Strong foundational knowledge of computer hardware/operating systems, network hardware and architecture.
•Public Key Infrastructure
•Data Encryption/Cryptography standards
•Strong knowledge industry standards regarding vulnerability management including Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS) and Open Web Application Security Project (OWASP)
•Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server and database security
•Strong verbal and written communication skills.
•Experience with End Point Security Management
Certifications a plus:
CISSP, Comptia CASP, S+, A+, N+, ISACA CISM
Large company benefits
Apply Here http://bit.ly/2P1PQga