IT Security Analyst

Vector Consulting, Inc
Columbia, United States of America
4 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Remote
Columbia, United States of America

Tech stack

Microsoft Windows
Bash
Computer Security
System Configuration
Linux
Python
PCI Data Security Standards
Powershell
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Software Security
Mitre Att&ck
Information Technology
Qualys

Job description

  • Assist with the statewide vulnerability management program for DIS.
  • Administer vulnerability management platforms, configure policies, reporting, and services to support agencies.
  • Analyze vulnerabilities, prioritize remediation, and document residual risks for agency systems.
  • Provide training and guidance to agencies on vulnerability management practices.
  • Support procurement, configuration, and utilization of vulnerability management tools.
  • Develop POA&Ms with DIS staff and agencies to track remediation efforts against SLOs.
  • Perform system criticality validation reviews with agencies to align severity levels and risk exposure.
  • Provide regular reporting and communication to stakeholders regarding vulnerabilities and risks.

Requirements

  • 5+ Years of Experience with vulnerability management tools (Qualys, Tenable, Rapid7).
  • 5+ Years of Experience with architecting, deploying, configuring, and operating vulnerability management platforms.
  • 5+ Years of Experience with Windows and Linux operating systems.
  • 5+ Years of Experience with interpreting and applying CVSS ratings, POA&M tracking, and risk mitigation strategies.

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):

  • Familiarity with standards such as PCI DSS, NIST, ITIL, CVSS, and MITRE ATT&CK.
  • Experience in application security and automation/scripting (Python, PowerShell, Bash).
  • Prior experience leading statewide or enterprise-wide vulnerability programs.

REQUIRED EDUCATION/CERTIFICATIONS:

  • Bachelor''s degree in information technology or information security related field
  • Eight years of relevant work experience may be substituted in lieu of education OR Five years of experience in supporting enterprise IT environments and/or system deployments

PREFERRED EDUCATION/CERTIFICATIONS:

  • CISSP, CISA, CISO or equivalent advanced security certification.
  • Additional relevant certifications (e.g., CEH, OSCP, GPEN).

About the company

Vector Consulting, Inc., (Headquartered in Atlanta) is an IT Talent Acquisition Solutions firm committed to delivering results. Since our founding in 1990, we have been partnering with our customers, understanding their business, and developing solutions with a commitment to quality, reliability and value. Our continuing growth has been and continues to be built around successful relationships that are based on our organization''s operating philosophy and commitment to ** People, Partnerships, Purpose and Performance - THE VECTOR WAY

Apply for this position