Talent.com
Vulnerability Management Specialist

Vulnerability Management Specialist

Open Systems TechnologiesNew York, NY, US
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

A financial firm is looking for a Vulnerability Management Specialist in Iselin, NJ or NYC.

Compensation : $105-110k

Responsibilities :

  • As part of the IT Security team, develop and implement firm IT Strategy in consultation with the IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall firm Strategy
  • Research new security related products and services to ensure that firm is equipped with appropriate industry best tools and solutions
  • Operate controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations.
  • Conduct IT Security risk assessments for all high impact projects, defining security mitigating controls that impact the technology architectures of firm, service providers, and business partners
  • Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats
  • Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective / timely resolution with IT Security
  • Maintain relationships with third-party IT security vendors and strategic partners

Vulnerability Identification :

  • Scanning Systems : Use automated tools to perform regular scans on all systems including Networks, Application and endpoints.
  • Threat Client : Stay updated with the latest vulnerability databases (e.g CVE – Common Vulnerability and Exposure) and emerging threats to identify new vulnerabilities that could affect the organization.

    • Vulnerability Identification :

  • Risk Rating : Assign severity ratings to vulnerabilities (e.g. Critical, High, Medium, low) using risk assessment frameworks like CVSS (Common Vulnerability Scoring System)
  • Business Impact : Access the potential impact of each vulnerability on the business including the like hood of exploitation, potential data loss and possible operational disruptions.

    • Vulnerability Remediation :

  • Patch Management : Work with IT and development teams to ensure that patches or updates are applied to systems and applications to fix vulnerabilities.
  • Configuration Changes : Where applicable, make configuration changes to systems or applications to reduce exposure to Vulnerabilities

    • Qualifications :

  • Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
  • S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent);
  • Conduct regular vulnerability scans and assessments across the organization's IT environment using tools like Nessus, Qualys, or Rapid7. These platforms are essential for identifying and prioritizing security weaknesses, providing detailed insights that enable proactive risk reduction.
  • Analyze vulnerabilities and threats, determine their potential impact, and recommend strategies for risk prevention.
  • Coordinate with IT and security teams to prioritize and apply security patches and updates, including managing patch deployments using WSUS, SCCM, or Ansible which are critical for automating and streamlining the update process across large networks, reducing the risk of security breaches, and ensuring compliance with industry standards.
  • Assist in investigating and resolving security incidents, providing expertise on vulnerability exploitation and mitigation.
  • Generate detailed reports on vulnerabilities, their impact, and the status of remediation efforts. Communicate findings to stakeholders.
  • Ensure compliance with relevant security standards, policies, and regulations.
  • Develop and maintain vulnerability management documentation, including policies, procedures, and playbooks, including creating response plans for critical vulnerabilities or emerging threats.
  • Engage in vulnerability management program reviews and continuous improvement initiatives, providing input on enhancements to scanning and reporting processes.
  • Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
  • S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent);
  • Security certifications such as CISSP and at least one GIAC GSEC, GCED, GCIA, GCIH, GREM, GCFR or equivalent is preferred
  • Knowledge of incident handling life cycle based on an established framework : ISO 27035, SANS, NIST SP 800-61, CERT, ENISA
  • Experience with security and automation : Python, Powershell, Windows OS, Linux OS, VMware, Puppet, Chef / Ansible desirable
    • serp_jobs.job_alerts.create_a_job

    Vulnerability Management • New York, NY, US

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    Bomb Technical

    Bomb Technical

    U.S. NavyNew Brunswick, NJ, United States
    serp_jobs.job_card.full_time
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.Americans live for fireworks on the Fourth of July. The other 364 days of the year, Explosive Ordnance Disposal (...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Environmental Technical Claims Specialist

    Senior Environmental Technical Claims Specialist

    Argonaut Management Services, IncNewark, NJ, United States
    serp_jobs.job_card.full_time
    Argo Group International Holdings, Inc.American National, US based specialty P&C companies, (together known as BP&C, Inc. Brookfield Wealth Solutions, Ltd.BWS"), a New York and Toronto-listed public...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Principal Threat Analyst

    Principal Threat Analyst

    VirtualVocationsPaterson, New Jersey, United States
    serp_jobs.job_card.full_time
    A company is looking for a Principal Threat Analyst.Key Responsibilities Conduct deep analysis for client investigations using various data sources and monitoring tools Perform security monitori...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Senior Site Reliability Engineer

    Senior Site Reliability Engineer

    VirtualVocationsPaterson, New Jersey, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Site Reliability Engineer (contractor).Key Responsibilities Design and manage infrastructure using Terraform and CloudFormation Define and maintain SLIs, SLOs, ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Manager - CFIUS Security Compliance Advisor

    Senior Manager - CFIUS Security Compliance Advisor

    EisnerAmperIselin, NJ, United States
    serp_jobs.job_card.full_time
    At EisnerAmper, we look for individuals who welcome.EisnerAmper is looking to hire a.Risk and Compliance Services practice as a dedicated member of the National Security Advisory services team.The ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Climate Resilience Specialist

    Climate Resilience Specialist

    VirtualVocationsPaterson, New Jersey, United States
    serp_jobs.job_card.full_time
    A company is looking for a Consultant - Climate Resilience and Social Inclusion Specialist.Key Responsibilities Develop and adapt research tools to capture gender and inclusion dimensions in clim...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Threat Hunter

    Threat Hunter

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Threat Hunter to proactively identify and mitigate threats using advanced SPL queries in Splunk. Key Responsibilities Develop SPL queries to detect IOCs, anomalies, and ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Principal Consultant Engagement Lead

    Principal Consultant Engagement Lead

    VirtualVocationsFlushing, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Principal Consultant / Engagement Lead to manage Business Email Compromise and Ransomware engagements. Key Responsibilities : Assist with scoping new engagements and guide ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Remote XSOAR Consultant

    Remote XSOAR Consultant

    VirtualVocationsJamaica, New York, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A company is looking for a Remote XSOAR Consultant to assist with log migration and detection strategy for clients.Key Responsibilities Collaborate with the technical lead to develop a log ingest...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Director, Compliance & Risk Operations

    Director, Compliance & Risk Operations

    Novartis Group CompaniesEast Hanover, NJ, United States
    serp_jobs.job_card.full_time
    Join Novartis in a new role as the Director of Compliance & Risk Operations, responsible for scaling and leading Novartis' Integrated Marketing Organization (IMO)-focused capability that ensures ma...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Staff Vulnerability Management Engineer

    Staff Vulnerability Management Engineer

    VirtualVocationsFlushing, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Staff Vulnerability Management Engineer.Key Responsibilities : Develop and manage the enterprise vulnerability management strategy, policies, and standards Lead the end...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Search & Rescue

    Search & Rescue

    U.S. NavyNew Brunswick, NJ, United States
    serp_jobs.job_card.full_time +1
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.When lives are on the line, Navy Aviation Rescue Swimmers (AIRRs) are exceptionally adept at answering the call....serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    AWS Remediation Engineer

    AWS Remediation Engineer

    VirtualVocationsPaterson, New Jersey, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior AWS Remediation Engineer.Key Responsibilities : Manage security issues and ensure timely remediation Design and implement automated security solutions for cloud ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Senior Claim Specialist, Environmental

    Senior Claim Specialist, Environmental

    Axis CapitalRed Bank, NJ, United States
    serp_jobs.job_card.full_time
    This is your opportunity to join AXIS Capital - a trusted.We stand apart for our outstanding client service, intelligent risk taking and superior risk adjusted returns for our shareholders.We also ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Compliance Specialist

    Compliance Specialist

    Children's Aid SocietyNew York, NY, United States
    serp_jobs.job_card.full_time
    The Compliance Specialist supports the implementation and daily operations of the agency's Compliance program.This role executes the activities that ensure the agency operations comply with applica...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Affordable Housing Compliance Specialist

    Affordable Housing Compliance Specialist

    VirtualVocationsPaterson, New Jersey, United States
    serp_jobs.job_card.full_time
    A company is looking for an Affordable Housing Compliance Specialist II, remote.Key Responsibilities Provide client support by answering questions and offering guidance on affordable housing comp...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Senior Security Engineer

    Senior Security Engineer

    VirtualVocationsFlushing, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Security Engineer to ensure the security of their cloud infrastructure and software systems. Key Responsibilities Design, implement, and maintain secure cloud arc...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Engineer

    Security Engineer

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security Engineer to secure AI systems by identifying vulnerabilities and implementing protections. Key Responsibilities Conduct threat modeling, vulnerability assessmen...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30