Vulnerability Management (Rapid 7 Consultant)

Mandatory Requirement: In depth knowledge of Rapid 7 vulnerability management tool. Understanding of Rapid 7 dashboards, limitations of tools, Rapid 7 data warehouse & SQL queries etc. must have done Sr. customer facing consultant and lead role in past.

Experience:

• Hands on experience on vulnerability remediation in multi-vendor/multi tool/ hybrid cloud environment.
• Candidates should have experience of 8+ years on Vulnerability Management for international customer environments with Rapid 7 as primary tool.

Requirements

1. Should have great communication and leadership skills. Ability to interact effectively with different level of stakeholders to govern vulnerability management area effectively.
2. Should have good knowledge of information security areas as Vulnerability Management Lifecycle, Risk Management, Policy Compliance etc.
3. Good understanding of information security related fields, including security implementation, security operations, and security policy and technology administration
4. Should possess good understanding of assets, threats and vulnerabilities and their correlation in an organization
5. Should have experience of Vulnerability Management tool like Rapid 7, Qualys, Nessus, Tenable, MS Defender etc.
6. Should be able to govern vulnerability remediation lifecycle
7. Should have leadership qualities to handle a team of professionals
8. Experience in governance of vulnerability backlog remediation
9. Experience on vulnerability prioritization platforms like RiskSense/ Kenna would be a plus
10. Knowledge of SANS Top 20 Critical Security Controls and NIST Vulnerability Database (CVE)
11. Should be able to collect feedback and analyze weak areas and present the same to management
12. Should be able to collect gaps in vulnerability management processes and provide optimization recommendations to customer.

Tasks/Duties

• Performing evaluation of the deployed tool environment
• Able to identify and suggest vulnerability management tool related architectural best practices
• Should have working experience on deployment of scanners/cloud agents for scanning tools like Rapid 7, Qualys, Tenable, MS Defender etc.
• Should have working experience on configuring the vulnerability management tool including scanning profiles, policy compliance templates, scanning schedules etc.
• Able to develop vulnerability management tool architecture
• Analyze, Interpret and prioritize vulnerability scan results into remediation actions
• Improve and mature the vulnerability management process
• Handle vulnerability remediation governance process
• Provide recommendations on the emerging security threats to client
• Provide recommendations on emerging tools complimenting the vulnerability management landscape

Soft Skills:

• Must be from global support/ practice background
• Motivated to complete tasks and projects
• Strong MS Office, documentation, communication, and presentation skills