Overview
On Site
BASED ON EXPERIENCE
Contract - Independent
Contract - W2
Skills
Software Security
Management
Cloud Computing
Collaboration
Leadership
Artificial Intelligence
Vulnerability Assessment
Testing
Automated Testing
Manual Testing
Python
Scripting
Research
Dashboard
Issue Tracking
Reporting
SANS
Auditing
Regulatory Compliance
Vulnerability Management
Job Details
Hi,
The following requirement is open with our client.
Title : Senior Security Analyst
Location : NYC. NY - Hybrid (Tristate candidates preferred)
Duration : 6-12 Months
Role Overview
We are seeking a Senior Security Analyst to join our Vulnerability Management team. The successful candidate will have experience in Application Security and be ready to branch out to vulnerability management across a landscape of application, infrastructure, cloud, and special assessment security observations. This role will be responsible for identifying, assessing, and managing vulnerabilities across our technology landscape. This role involves working closely with infrastructure, application, and cloud engineering teams to provide recommendation for remediating security observations and ensuring timely remediation of security risks and alignment with industry best practices and regulatory requirements.
In this role you will be responsible for the following:
The following requirement is open with our client.
Title : Senior Security Analyst
Location : NYC. NY - Hybrid (Tristate candidates preferred)
Duration : 6-12 Months
Role Overview
We are seeking a Senior Security Analyst to join our Vulnerability Management team. The successful candidate will have experience in Application Security and be ready to branch out to vulnerability management across a landscape of application, infrastructure, cloud, and special assessment security observations. This role will be responsible for identifying, assessing, and managing vulnerabilities across our technology landscape. This role involves working closely with infrastructure, application, and cloud engineering teams to provide recommendation for remediating security observations and ensuring timely remediation of security risks and alignment with industry best practices and regulatory requirements.
In this role you will be responsible for the following:
- Use existing tools to conduct automated vulnerability assessments
- Interpret and risk assess scan results from software applications, cloud resources, and infrastructure systems
- Collaborate with various teams within Fitch to assist with prioritization of vulnerabilities and ensure remediation occurs within the expected timelines
- Ensure all detected vulnerabilities either from manual or automated testing process are accurately logged and tracked in a ticketing system to facilitate remediation, leadership metrics reporting, and audit readiness
- Bring an AI-first mindset; be able to identify and act upon opportunities to automate vulnerability analysis and prioritization, as well as administrative tasks, while improving the quality of the output to help developers achieve remediation as easily as possible.
- Perform validation testing of remediated vulnerabilities using automated testing tools and manual testing techniques such as with python scripting or otherwise
- Research and analyze vulnerabilities to determine their true risk to Fitch, considering factors such as exploitability, asset exposure, business impact, and compensating controls
- Apply cyber risk quantification techniques to analyze vulnerability severities
- Create and maintain metrics and dashboards using data from the ticketing system or other sources to support reporting to various stakeholders across Fitch
- Assist with security audits and compliance initiatives related to vulnerability management
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.