Cyber Security Vulnerability Analyst
Job Description
Cyber Security Vulnerability Analyst LOCATION: Houston, TX NES Global Talent is a leading global technical recruitment company providing professional contract and permanent staff to a diverse world-wide client base. Our client a downstream operator is looking to hire Cyber Security Vulnerability Analyst on a direct hire basis in Houston, TX. KEY RESPONSIBILITIES/ACCOUNTABILITIES Hands on security control penetration testing and performing vulnerability/risk assessments Manage the employee security awareness/training program 3rd party/cloud risk assessment program and ownership of the IT Risk Registry Validate Critical Security Controls - Actively validate current security controls including critical patches, security settings and rules are configured per the CyberSecurity Policy. This includes both reporting and hands-on validation.50% of the tea members’ time. Validate Critical Security Event Logging - Actively validate all current security and detective controls are logging accurate Information to the appropriate company centralized logging solution. This also includes both reporting and hands-on validation. IT Risk Assessments and IT Audits - Manage the IT Risk Registry program.
Lead IT risk assessment requests. Participate in moderate to highly complex projects to deploy new solutions ensuring security controls and risk management are documented and receive senior level approval early in the design process. Security Policy Management Manage all IT cyber security policies. Ensure the company’s CyberSecurity and related policies are updated and communicated to the organization as new threats emerge or new security controls are deployed.
ESSENTIAL QUALIFICATIONS/REQUIREMENTS 4 years of progressive IT experience, preferred IT cyber security experience 2+ years conducting IT security testing in a business environment Experience with vulnerability scanning and management solutions (Nessus, OpenVAS, etc) Experience with security configuration and patch management solutions (SCCM, Qualys, etc) Knowledge of current vulnerabilities and cyber threats Knowledge of operating systems including Windows, Linux, Unix and VMware
Post a Comment