Vacancy expired!
Job Description
We are seeking a IT Security Vulnerability Engineer for a contract-to-hire role in Englewood, CO.
This role will be onsite/in the office Monday- Friday during normal business hours (no remote options) in the south Denver area.In this exciting role, you will be responsible for the following:
- Conducting vulnerability assessments
- Providing remediation steps & recommendations to system owners / stakeholders
- Ensuring all scans across tools are performing correctly and in a timely manner.
- Work with the Governance, Risk, & Compliance department and various stakeholders in developing & providing risk-based mitigation strategies for networks, operating systems, and applications.
- Identifying, assessing, and managing threats, vulnerabilities, and associated risks
- Examine alerts from various security monitoring tools, perform triage & determine scope of threats; escalate as necessary.
- Develop and analyze dashboards and reports to identify potential threats, suspicious/anomalous activity, malware, etc
- Working with multiple teams across the enterprise to facilitate scanning needs -Deploying scanners and performing scanner system upgrades - Automating scans and assisting with the development of custom dashboards or centralized location for all vulnerability data
- Provide vulnerability management mentoring & guidance to junior level analysts
- Conducting zero day research & response
- Developing & performing configuration audit / benchmarking scans
- Light penetration testing & manual vulnerability research
- Creating & maintaining vulnerability management policies, procedures, & training
Qualifications
- BS Degree in Cybersecurity, computer science or other related technical field
- 7+ years of Cybersecurity experience to include previous vulnerability management experience
- Must know types or categories of vulnerabilities, severity & their impact
- Excellent written & verbal communication skills
- Knowledge of control frameworks (NIST, ISO)
- Networking concepts, application development concepts & OS level terminology
Preferred experience
- Experience in a larger, fast-paced enterprise
- Incident response experience
- Penetration testing experience
- Scripting and/or coding experience
- Involvement or exposure to secure code development / DevSecOps