TITLE: Vulnerability Management Administrator
TYPE: 1 year contract
WORK SCHEDULE: M-F (8am-5pm)
work mode: Remote
INDUSTRY: GOVERNMENT / PUBLIC SECTOR
JOB SUMMARY A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision; works to ensure developers create the most secure systems while enhancing the privacy of all system users; and has experience with white-hat hacking and fundamental computer science concepts.
The Security Engineer will perform security audits, risk analysis, application-level vulnerability testing, and security code reviews; develop and implement technical solutions to help mitigate security vulnerabilities; and conduct research to identify new attack vectors.
Skills Required: Security Engineers will possess knowledge and experience in safeguarding sensitive data from cyber-attacks.
Skills Preferred: Understanding End-point Security, Asset Tracking, and Threat Modeling
Possess knowledge of vulnerability scan of Operational Technology (OT) devices, including PLC, IoTs, energy and utility control systems, HVAC, and DCS.
Possess knowledge of security and asset management solutions such as Axonius cybersecurity asset tracking, Tenable.io vulnerability management, Tanium patch management, and the CrowdStrike Extended Detection and Response
Understanding APIs and Python scripting.
Work Experience Required:
This classification must have a minimum of 10 years of experience with developing and implementing technical solutions to help mitigate security vulnerabilities.
Work Experience Preferred:
Minimum 5 years working experience with Tenable.io/sc (TenableOne) network and cloud vulnerability management solution including:
- Network vulnerability analysis and prioritizing remediation efforts
-CVSS v3 and vulnerability ratings
-Assessing risk level of identified vulnerabilities, asset value, exposure and impact
-Configure and customize scanning policies and templates
-Asset tagging and grouping
-Performance tuning and reporting
-Threat Modeling
-Scanning Operational Technology (OT) devices
Minimum 5 years working experience in the last six (6) years with utilizing automation tools, API integration, and python scripting
Minimum 3 years working experience in the last four (4) years utilizing Tanium for patching and deployments
Minimum 3 years working experience with Axonius cybersecurity asset management
Education/Training Required:
A bachelor’s degree in an IT-related or Engineering field.
