We are seeking a skilled and experienced Tenable.io and Qualys VM engineer to join our team. As a Tenable and Qualys Vulnerability Management (VM) Engineer, you will be responsible for managing and maintaining the Qualys Vulnerability Management platform to ensure the security of our organization's infrastructure. You will collaborate with cross-functional teams to assess vulnerabilities, analyze risks, and implement remediation strategies to safeguard our systems.
Responsibilities:Manage and maintain the Tenable.io and Qualys Vulnerability Management platform, including setup, configuration, and ongoing administration.
Conduct regular vulnerability scans and assessments using Tenable and Qualys VM and analyze the results to identify vulnerabilities and potential risks.
Collaborate with system administrators, network engineers, and other stakeholders to prioritize and address identified vulnerabilities.
Develop and implement remediation strategies and action plans based on vulnerability scan findings.
Provide technical expertise and guidance to cross-functional teams on vulnerability management best practices.
Stay up to date with the latest security trends, vulnerabilities, and industry standards to continuously improve vulnerability management processes.
Perform risk assessments and recommend appropriate mitigation strategies for identified vulnerabilities.
Monitor and track remediation efforts to ensure timely and effective resolution of vulnerabilities.
Knowledge of patch management processes and procedures.
Understanding of regulatory requirements and industry best practices related to vulnerability management.
Proficiency in interpreting and analyzing security intelligence and advisory reports.
Ability to identify relevant findings and recommendations from the reports.
Skill in translating complex security information into actionable steps and recommendations.
Experience in developing and implementing security improvement plans based on report findings.
Serve as an escalation point on issues, dependencies, and risks related to vulnerability scanning and security testing.
Generate reports and metrics related to vulnerability management activities and present them to stakeholders.
Assist with incident response efforts by investigating and providing technical support during security incidents related to vulnerabilities.
Collaborate with vendors and other external entities to enhance the effectiveness of vulnerability management tools and processes.
Comprehensive monitoring and documentation of vulnerability remediation activities from initiation to completion as per the predefined reporting frequencies to ensure timely communication of vulnerability remediation status.