Job Description Summary

Designs, programs, documents, tests, and fixes bugs involved in creating and maintaining applications and frameworks involved in a software release lifecycle resulting in a digital product. Impacts the team's ability to achieve service, quality and timeliness of objectives. The role is subject to operating policy objectives. There is moderate autonomy within the role. High levels of operational judgment are required to achieve outcomes required.

Job Description

Essential Responsibilities:

• Design, plan, execute, and monitor the enterprise-wide vulnerability management program.

• Utilize the Qualys Vulnerability Management Suite to scan, assess, and prioritize vulnerabilities across systems, applications, and infrastructure.

• Interpret and analyze scan results to identify high-risk vulnerabilities and security exposures.

• Be the primary systems administrator for the Qualys platform supporting downstream integrations.

• Regularly review and assess the effectiveness of vulnerability management processes and recommend improvements.

• Conduct risk assessments and security audits to identify vulnerabilities and weaknesses in the organization's IT infrastructure and systems.

• Evaluate the potential impact of identified vulnerabilities and recommend appropriate mitigation strategies.

• Develop risk mitigation plans and work with relevant teams to implement necessary security controls.

• Prepare comprehensive vulnerability assessment reports and present findings to management and relevant stakeholders.

• Maintain detailed documentation of vulnerability scans, assessment results, and remediation activities.

• Track and report key performance indicators (KPIs) related to vulnerability management.

• Work closely with the patch management team to ensure the timely deployment of security patches and updates.

• Coordinate with software vendors to stay informed about the latest security patches and advisories.

• Assist in incident response activities related to identified vulnerabilities, if necessary.

• Collaborate with the incident response team to investigate and contain potential security breaches.

• Educate employees on security best practices and the importance of vulnerability management.

• Conduct training sessions and workshops to enhance security awareness across the organization.

Qualifications:

• Proven experience as a Vulnerability Manager, Security Analyst, or a similar role with expertise in Qualys Vulnerability Management Suite.

• Solid understanding of vulnerability assessment tools, network scanning, and penetration testing.

• In-depth knowledge of common security frameworks and standards (https://e.g., NIST, CIS, ISO 27001).

• Familiarity with various operating systems, applications, and network devices.

• Strong analytical and problem-solving skills with the ability to prioritize security risks effectively.

• Excellent communication skills, both written and verbal, to articulate complex technical concepts to non-technical stakeholders.

• Relevant certifications such as CISSP, CISM, CEH, or Qualys certifications are a plus.

Qualifications/Requirements:

• Bachelor’s degree from accredited university or college with minimum of 2 years of professional experience OR associate degree with minimum of 5 years of professional experience OR High School Diploma with minimum of 7 years of professional experience

Note: Military experience is equivalent to professional experience

Eligibility Requirement:

-Legal authorization to work in the https://U.S. is required.  We will not sponsor individuals for employment visas, now or in the future, for this job.

Join our dynamic team and contribute to our mission of maintaining a secure and resilient organization. If you are passionate about vulnerability management and have a strong background in utilizing Qualys, we encourage you to apply!