| SECURITY REMEDIATION ENGINEER||Hybrid at Remote, Remote, USA |
| Email: [email protected] |
| From: Shiva Chauhan, TEK Inspirations LLC [email protected] Reply to: [email protected] Hello, Hope you are doing well, Please check the below job description and let me know if you have any suitable candidate for the same: SECURITY REMEDIATION ENGINEER St. Louis metro preferred, MO ( Must be local & role will be hybrid 3 days a week) Total Exp. Required: 9 yrs min. relevant work experience (Information Security, Cybersecurity, Vulnerability Remediation, Network Security, Access Control, Cloud Security)JOB SUMMARY This position is within the Software Development & IT Organization. Our department supports the front-end applications and edge services delivering most of the sales orders into our Fortune 100 Company. The Process & Transition Services team is accountable for enabling the application teams success in their endeavors by creating quality documentation, driving security and compliance efforts, and improving their internal processes. We are seeking a detail-oriented and proactive individual to join our team as a Vulnerability Remediation Analyst. In this role, you will play a vital part in coordinating and supporting the successful execution of security projects and ongoing efforts of teams in an SRE model working with ITIL organized operations groups. This position offers an excellent opportunity for someone with a passion for technology to contribute to the growth and success of our organization. As a Security Remediation Engineer, you will be responsible for the successful delivery, design, and support of the vulnerability management program. This roles specific focus will be on asset identification, vulnerability scanning, scan outputs, reporting, response, assessing and prioritizing vulnerabilities for remediation. You will accomplish this by partnering with other teams who are responsible for mitigation strategies, vulnerability fixes, and the tools and methodologies utilized within the program.RESPONSIBILITIES Collaborates with architects, security leads, and developers to drive remediation efforts and adoption of security tools and practices. Translates business and compliance needs into technical specifications to deliver Vulnerability Remediation within the ecosystem. Serves as a subject matter expert for vulnerability response, management, scanning, identification, and utilizing a risk-based approach to assessing and prioritizing vulnerabilities. While overseeing and maintaining technical documentation related diagrams. Works analytically to solve both tactical and strategic problems within the vulnerability management and remediation programs. Facilitates the integration of vulnerability management tool data with enterprise systems to automate functions and workflows. Identifies, develops, and implements mechanisms to address vulnerabilities and how they may lead to a reduction in attack surface and a stronger overall security posture. Maintains current knowledge of industry trends and standards; proactively pursues professional growth in the areas of technology, business knowledge, and Charter policies and platforms. Owns the reporting responsibilities and hosts meetings speaking to vulnerability remediation progress and other security focused efforts to peer teams & leadership.SKILLS & EXPERIENCE The ideal applicant will clearly express the following characteristics and competencies: 8+ years experience in an Enterprise Environment Information Security, Cybersecurity, Vulnerability Remediation, Network Security, Access Control, Cloud Security 3+ years experience assessing and training other to use vulnerability management tools, vulnerability scan configurations, vulnerability reporting, and vulnerability remediation. Strong knowledge in security standards and practices for both on-premise and AWS environments. Very strong written and verbal communication skills with the ability to capture and articulate technical and non-technical details. Industry Cybersecurity certifications (ISC2, SANS, Offense Security, ISACA etc.) A strong, team-oriented spirit, and a positive, exuberant personality focused on learning and overcoming obstacles. Organized and able to work across teams on multiple applications. Ability to adapt to changing priorities and work under tight deadlines in a fast-paced environment using with Agile & DevSecOps practices. Working knowledge of Jira and other Atlassian technologies. Experience actively participating in risk assessments or technology audits is a plus Experience in PCI DSS assessments and providing evidence of compliance is a plus. Ideal o Working experience using the following technologies: Qualys, Kenna, AST, SCA, WAF, RASP, AWS Security Tools, Secret Managers, Cherwell, Bitbucket, Gitlab, Atlassian Products. o PCI DSS, SOC2, SOX compliance experience. o Experience in an environment containing: Java & Python applications, Linux & Windows OS, VMware, Containerization, AWS, Microservice Architecture in Ecommerce Platforms. o Solid understanding of Cryptography; including SSL, TLS, and cipher suites. o Comfortable with building reports with visualizations and presenting to member of Mgmt & Leadership. o Certs: CISSP, CCSP, CSSP, OSCP Acceptable o Working experience using the following technologies: Any vulnerability scanning tools, AST, SCA, WAF, RASP, Cloud Native Security Tools, Secret Managers, Version Control Software, Atlassian Products. o Experience in an environment containing: Java applications, Linux OS, VMware, Containerization, Hybrid Cloud/On-Prem ecosystems. o Comfortable with building reports with visualizations and presenting to member of Mgmt & Leadership. o Certs: CEH, SYCA+, AWS CSS Certs: Sec+, SSCP, AWS CCP Written Communication Required o Well written with the ability to illustrate elaborate process flows. o Experience illustrating architectural and design details. o Eye for detail; ready and able to QC and edit a variety of documents. Strongly Preferred o Inclined to create and maintain knowledge documents. o Experience producing a variety of IT operational documents like network diagrams, data flow diagrams, and system architecture diagrams. o Proficient with Atlassian Confluence & JIRA Nice To Haves o Familiarity with Cherwell ITSM, Archer GRC, Kenna Thanks & Regards, Shiva Chauhan IT Recruiter TEK Inspirations LLC : 13573 Tabasco Cat Trail, Frisco, TX 75035 Email: [email protected] Keywords: information technology Missouri Texas |
| [email protected] View all |
| Tue Sep 12 18:16:00 UTC 2023 |