Job Description
TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses.
Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance.
TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET.
If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.
Don't meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single requirement.
At TriNet, we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, we encourage you to apply anyways.
You may just be the right candidate for this or other roles.
A Brief Overview
The Security Analyst, Vulnerability Management position is responsible for ensuring the overall effectiveness of the Vulnerability Management program.
- Design, execute, and troubleshoot discovery scanning of endpoints, optimizing asset management, scan schedules, and scanner health within Microsoft Defender for Vulnerability Management
- Design, execute, and troubleshoot vulnerability scanning on endpoints, optimizing and troubleshooting scan policies within Microsoft Defender for Vulnerability Management
- Develop, deploy, and maintain vulnerability scanning architecture, including but not limited to Microsoft Defender for Vulnerability Management sensors, scanners, licensing, and hardware / VM requirements
- Filter and read through vulnerability scan results in Microsoft Defender for Vulnerability Management, resolve incomplete scan results, and manage false positive vulnerabilities
- Create tags in Microsoft Defender for Vulnerability Management to add business context to assets / endpoints
- Develop template and / or custom dashboards within ServiceNow to help build statistics; For example, the most vulnerable assets, vulnerability affecting most endpoints, and / or risk posture improvement
- Configure and operate network vulnerability scanning tools and create reports that communicate scan results and recommended remediation actions
- Leverage metrics terminology to understand EPSS, CVSS 2.0, CVSS 3.0, NIST and other framework methodologies
- Thorough usage of Python and KQL (Kusto Query Language) utilizing data science methodologies for exporting and manipulating vulnerability data
- High-level understanding of the threats that vulnerabilities have to their network environment, including analysis and impact
- Coordinate with other teams to validate and make sure patches took effect on managed endpoints
- Recast severity of and / or accept the risk of a vulnerability within Microsoft Defender for Vulnerability Management, as needed
- Use cybersecurity expertise to deliver accurate, complex security reports that can be understood by business system owners, executives, and other stakeholders
Required for All Jobs
- Performs other duties as assigned
- Complies with all policies and standards
Education Qualifications
- HS Diploma or GED or equivalent experience
- BS or equivalent experience-Preferred
Experience Qualifications
- 5+ years for HS, 2+ years for BS
- Vulnerability management, cybersecurity operations-Preferred
- Licenses and Certifications
- Licenses / Certifications Details-Required / Preferred
- Security+-Preferred
- CISSP-Preferred
- GIAC Enterprise Vulnerability Assessor (GEVA)-Preferred
- CEH Certification-Preferred
Knowledge, Skills and Abilities
- Experience with vulnerability management and network scanning tools such as, ServiceNow Vulnerability Response (integrated with Microsoft Defender for Vulnerability Management), ServiceNow CMDB, NMAP
- Leverage Microsoft Office applications, creating reports from data, including Excel, PowerPoint, and Word
- Knowledge of TCP / IP and other common networking concepts and protocols
- Knowledge of Python programming and data science methodologies
- Knowledgeable in basic security configuration (BSC) hardening methodologies from U.S. Defense Information Systems (DISA STIG), Center for Internet Security (CIS Benchmarks), and / or Microsoft Guidance
Work Environment :
Work in clean, pleasant, and comfortable home or office setting. The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.
Reasonable accommodations may be made to enable persons with disabilities to perform the essential functions.
Position may be considered remote and require reliable and consistent internet service.
Travel Requirements
Minimal
The salary range for this role is $66,700 to $136,100. The candidate's final salary offer will be based on the candidate's skills, education, work location and experience.
A candidate's compensation may also include bonuses consistent with TriNet's corporate bonus plan.
Additionally, subject to applicable eligibility requirements, TriNet offers permanent full-time employees a variety of benefits including medical, dental, and vision plans, life and disability insurance, a 401(K) savings plan, an employee stock purchase plan, eleven (11) Company observed holidays, PTO and a comprehensive leave program.
Please click the following link for detailed information about our benefits offerings : https : / / www.trinet.com / documents / blt5b61a1040aae1904
Please Note : TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing.
Position functions and qualifications may vary depending on business necessity.
TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics.
Any applicant with a mental or physical disability who requires an accommodation during the application process should contact redacted to request such an accommodation.
About Us
TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses.
Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance.
TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET.
If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.
Please note that at this time, TriNet requires colleagues reporting to TriNet offices, engaging in in-person activities (including off-sites) or engaging in TriNet sponsored business travel, to be fully vaccinated (as defined by the CDC) against COVID-19 or provide proof of a negative PCR test each week.
TriNet will consider requests for reasonable accommodations for documented medical reasons and for sincerely held religious beliefs in accordance with applicable law.
TriNet is providing access to a mobile app for colleagues to submit proof of vaccination or negative test results. Please do not include proof of vaccine status or any indication of a possible request for an accommodation when submitting your application materials.
If applicable, TriNet will follow up with you directly to request proof of vaccination and to discuss any potential accommodations.