Security Analyst - Vulnerability Management - Full-time / Part-time

Security Analyst - Vulnerability Management
4 to 18 month contract
Seattle, WA

Role:
Information Security Analyst, Vulnerability Management, has a broad range of responsibilities within the Global Information Security vulnerability management program, with emphasis on risk assessment, remediation, and customer engagement to ensure the removal of vulnerabilities from the technology environment. This role is directly responsible for infrastructure and application vulnerability research, analysis, categorization, and communication of risks posed in the context of technologies in use. This role will work closely with other members of the Vulnerability Management team to ensure the effective and efficient execution of vulnerability treatments by diverse customer groups across the Enterprise.

Responsibilities:
Evaluate all new security vulnerabilities identified by vendors of technologies used within the Enterprise
Investigate solutions and mitigations for vulnerabilities present within the Enterprise, and propose remediation in collaboration with the subject matter experts. Support execution of vulnerability management programs through meeting facilitation, activity measurement, customer engagement, and program education. Perform barrier analysis on vulnerability remediation and work with Information Security and Operations teams to identify and implement corrective measures. Develop reports that reflect vulnerability management program effectiveness and efficiency and perform targeted historical analysis; review historical trending data and recommend improvement opportunities. Work with Security Architecture and technology stakeholders to inform the development of Minimum Baseline Standards for secure configuration. Vulnerability Assessment and Treatment Analysis: Evaluate infrastructure and application security vulnerabilities and communicate risk-based treatment expectations. Vulnerability Management Program Support: Meeting facilitation, activity measurement, customer engagement, and program education. Reporting: Vulnerability management program effectiveness and efficiency and perform targeted historical analysis. Remediation Barrier Analysis: Analyze remediation failures and work with Information Security and Operations teams to identify and implement corrective measures.
Minimum Security Baseline Configuration: Work with Security Architecture and technology stakeholders to inform the development of Minimum Baseline Standards for secure configuration

Basic Qualifications
The ideal candidate will have a background in information security disciplines and vulnerability management
previous operational systems administration experience is strongly preferred.
He or she will have broad knowledge of infrastructure, operating system, and application technologies an ability to quickly perform in-depth analysis across diverse technologies implemented in a complex environment.
He or she should be familiar with writing and publishing information security advisories.

You should be able to answer these questions:
1. What are the vulnerability scanning tools that you have worked with in your previous roles? 2. What is a CVE? 3. What would be the pieces of information required to properly assess the risk of a vulnerability and its impact to an asset?

Referrals are welcome and local candidates only please! U.S. Citizens, Green Card Holders, and those authorized to work in the U.S. for any employer will be considered. We are unable to sponsor or transfer visas at this time. Email me with your resume or apply below. Emails and phone calls welcome at Angela.Smith@Experis.com or 425-372-2956

Experis is an Equal Opportunity Employer (EOE/AA)