Title: Vulnerability Management Systems Analyst - Remote
Mandatory skills:
vulnerability management tools, Qualys, Tenable, Rapid7, DIS,
architecting, deploying, configuring, vulnerability management platforms,
Windows, Linux operating systems,
CVSS ratings, POA&M tracking, risk mitigation,
PCI DSS, NIST, ITIL, CVSS, MITRE ATT&CK,
automation, scripting, Python, PowerShell, Bash,
risk documentation, information security, procurement, track remediation
Description:
The client is looking for a Data/Information Architect - Consultant (Vulnerability Management Systems Analyst - Consultant)
Scope of the project:
The position will work as a Consulting Vulnerability Management Systems Analyst within the client and will assist in maturing the statewide vulnerability management program. This role is responsible for administration of vulnerability management platforms, client coordination, risk documentation, and training. The consultant will help ensure state agencies manage and reduce information security risks through effective patching and remediation. The engagement is expected to be needed for 12
months with the possibility of extension.
Daily Duties / Responsibilities:
Assist with the statewide vulnerability management program for DIS.
Administer vulnerability management platforms, configure policies, reporting, and services to support agencies.
Analyze vulnerabilities, prioritize remediation, and document residual risks for client systems.
Provide training and guidance to agencies on vulnerability management practices.
Support procurement, configuration, and utilization of vulnerability management tools.
Develop POA&Ms with DIS staff and agencies to track remediation efforts against SLOs.
Perform system criticality validation reviews with agencies to align severity levels and risk exposure.
Provide regular reporting and communication to stakeholders regarding vulnerabilities and risks.
Required Skills (rank in order of Importance):
5+ Years of Experience with vulnerability management tools (Qualys, Tenable, Rapid7).
5+ Years of Experience with architecting, deploying, configuring, and operating vulnerability management platforms.
5+ Years of Experience with Windows and Linux operating systems.
5+ Years of Experience with interpreting and applying CVSS ratings, POA&M tracking, and risk mitigation strategies.
Preferred Skills (rank in order of Importance):
Familiarity with standards such as PCI DSS, NIST, ITIL, CVSS, and MITRE ATT&CK.
Experience in application security and automation/scripting (Python, PowerShell, Bash).
Prior experience leading statewide or enterprise-wide vulnerability programs.
Required education/certifications:
Bachelor''s degree in information technology or information security related field
Eight years of relevant work experience may be substituted in lieu of education OR Five years of experience in supporting enterprise IT environments and/or system deployments
Preferred Education/Certifications:
CISSP, CISA, CISO or equivalent advanced security certification.
Additional relevant certifications (e.g., CEH, OSCP, GPEN).
Notes:
Role is 100% remote
VIVA USA is an equal opportunity employer and is committed to maintaining a professional working environment that is free from discrimination and unlawful harassment. The Management, contractors, and staff of VIVA USA shall respect others without regard to race, sex, religion, age, color, creed, national or ethnic origin, physical, mental or sensory disability, marital status, sexual orientation, or status as a Vietnam-era, recently separated veteran, Active war time or campaign badge veteran, Armed forces service medal veteran, or disabled veteran. Please contact us at for any complaints, comments and suggestions.
Contact Details :
Account co-ordinator: Binodh M.T
VIVA USA INC.
3601 Algonquin Road, Suite 425
Rolling Meadows, IL 60008
|
Never miss an opportunity! Create an alert based on the job you applied for.