Data/Information Architect/ Vulnerability Management Systems Analyst - Consultant

• Support and enhance the statewide vulnerability management program
• Administer and manage vulnerability management platforms (configuration, policies, reporting)
• Analyze vulnerabilities and prioritize remediation activities
• Develop and maintain POA&Ms (Plans of Action & Milestones)
• Coordinate with state agencies on remediation and security practices
• Perform system criticality and risk validation reviews
• Provide training and guidance on vulnerability management
• Generate reports and communicate risk posture to stakeholders
• Assist in procurement and implementation of security tools
• Ensure compliance with remediation timelines and SLOs

• 5+ years of experience with vulnerability management tools such as Qualys, Tenable, Rapid7
• 5+ years of experience architecting, deploying, configuring, and operating vulnerability management platforms
• 5+ years of experience working with Windows and Linux operating systems
• Strong experience with:

• CVSS scoring and risk analysis
• POA&M tracking
• Risk mitigation strategies

Preferred Skills

• Familiarity with frameworks and standards:

• PCI DSS, NIST, ITIL, CVSS, MITRE ATT&CK

• Experience with:

• Application security
• Scripting/automation (Python, PowerShell, Bash)

• Experience leading enterprise or statewide vulnerability programs
• Relevant security certifications preferred:

• CISSP, CISA, CISO
• CEH, OSCP, GPEN

Education Requirements

• Bachelor's degree in IT, Cybersecurity, or related field OR

• Equivalent experience:

• 8+ years of relevant experience in lieu of degree
• 5+ years supporting enterprise IT environments

Additional Information: Preference will be given to candidates that are local to SC and are able to come onsite for project needs.

InterSources Inc, is a Small, Woman, and Minority-Owned Business Enterprise, ISO/IEC 27001, SOC 2 Type 2 certified company with massive 18+ years of diversified experience in providing IT Consulting Services, Artificial Intelligence, Data Analysis, Application Development, Cloud Services, Cybersecurity, Digital Marketing, ERP Management, Custom Software Development, Web Development, UI/ UX Design, System Integration, QA Support etc. We make reasonable accommodations for clients and employees, and we do not discriminate based on any protected attribute including race, religion, color, national origin, gender sexual orientation, gender identity, age, or marital status. We also are a Google Cloud and Oracle partner company.