ESR Healthcare
Lead IT Security Eng vulnerability & Threat Mgr McLean Tampa ref
ESR Healthcare, Mc Lean, Virginia, us, 22107
Lead IT Security Engineer (Vulnerability & Threat Management) - McLean, Tampa, Dallas, TX
Skills:
Vulnerability, Threat Management, Endpoint, Rapid7, Nessus, Tripwire, Qualys, SIEM, QRadar / QROC, IBM Guardium, Symantec DLP
Experience level:
Mid-seniorExperience required:
8 YearsEducation level:
Bachelor’s degreeJob function:
Information TechnologyIndustry:
Financial ServicesCompensation:
View salaryTotal position:
1Relocation assistance:
NoVisa:
Only US citizens and Green Card holders
Job Description:
Being a member of the Cybersecurity Engineering & Operations Team, the Lead IT Security Engineer will be a subject matter expert (SME) for Vulnerability and Threat Management capabilities. This position requires analyzing complex security issues to improve the overall posture of the company by evaluating new functionalities and ensuring preparation for Production implementation.
Responsibilities:
Provide 4th and 5th level support for tactical and strategic related issues related to VM technologies.
Collaborate with the security engineering squads, Product Owners, and transition coordinators to ensure smooth transition of the Vulnerability Management technologies into production.
Work closely with React and Enable Squad Team to identify opportunities for automation, eliminating manual, mundane activities and improving machine learning capabilities.
Maintain current versions of functionalities and technologies in production by effecting change management processes.
Proactively participate in CS Operations activities such as trainings, audit prep, playbook authoring, and ensure business as usual (BAU) activities are completed accurately.
Qualifications:
8+ years of industry experience with Endpoint, Network, and System security, with demonstrated experience in Vulnerability Management tools like Rapid7, Nessus, Tripwire, and Qualys.
Experience in Cloud Computing like AWS, Azure, GCP with emphasis on Cloud Baseline management like Dome9.
Experience in SIEM tools like QRadar/QROC and Data Protection technologies like IBM Guardium and Symantec DLP is desired.
Experience in Information Security frameworks and best practices for Vulnerability management, Risk Analysis, Reporting Metrics, and Assessments.
Problem-solving skills to resolve problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity.
One or more of the following certifications: CISSP, CEH, CISA, CRISC.
Additional Qualifications:
Feedback: Seeks feedback from others, provides feedback to others in support of their development, and is open and honest while dealing constructively with criticism.
Delegating: Effectively manages tasks and people, taking a practical approach to determine the most effective method of execution while respecting others’ expertise and considering others’ feelings and working styles.
Inclusive Leadership: Values individuals and embraces diversity by integrating differences and promoting diversity and inclusion across teams and functions.
Coaching: Understands and anticipates people's needs, skills, and abilities, to coach, motivate, and empower them for success.
#J-18808-Ljbffr
Skills:
Vulnerability, Threat Management, Endpoint, Rapid7, Nessus, Tripwire, Qualys, SIEM, QRadar / QROC, IBM Guardium, Symantec DLP
Experience level:
Mid-seniorExperience required:
8 YearsEducation level:
Bachelor’s degreeJob function:
Information TechnologyIndustry:
Financial ServicesCompensation:
View salaryTotal position:
1Relocation assistance:
NoVisa:
Only US citizens and Green Card holders
Job Description:
Being a member of the Cybersecurity Engineering & Operations Team, the Lead IT Security Engineer will be a subject matter expert (SME) for Vulnerability and Threat Management capabilities. This position requires analyzing complex security issues to improve the overall posture of the company by evaluating new functionalities and ensuring preparation for Production implementation.
Responsibilities:
Provide 4th and 5th level support for tactical and strategic related issues related to VM technologies.
Collaborate with the security engineering squads, Product Owners, and transition coordinators to ensure smooth transition of the Vulnerability Management technologies into production.
Work closely with React and Enable Squad Team to identify opportunities for automation, eliminating manual, mundane activities and improving machine learning capabilities.
Maintain current versions of functionalities and technologies in production by effecting change management processes.
Proactively participate in CS Operations activities such as trainings, audit prep, playbook authoring, and ensure business as usual (BAU) activities are completed accurately.
Qualifications:
8+ years of industry experience with Endpoint, Network, and System security, with demonstrated experience in Vulnerability Management tools like Rapid7, Nessus, Tripwire, and Qualys.
Experience in Cloud Computing like AWS, Azure, GCP with emphasis on Cloud Baseline management like Dome9.
Experience in SIEM tools like QRadar/QROC and Data Protection technologies like IBM Guardium and Symantec DLP is desired.
Experience in Information Security frameworks and best practices for Vulnerability management, Risk Analysis, Reporting Metrics, and Assessments.
Problem-solving skills to resolve problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity.
One or more of the following certifications: CISSP, CEH, CISA, CRISC.
Additional Qualifications:
Feedback: Seeks feedback from others, provides feedback to others in support of their development, and is open and honest while dealing constructively with criticism.
Delegating: Effectively manages tasks and people, taking a practical approach to determine the most effective method of execution while respecting others’ expertise and considering others’ feelings and working styles.
Inclusive Leadership: Values individuals and embraces diversity by integrating differences and promoting diversity and inclusion across teams and functions.
Coaching: Understands and anticipates people's needs, skills, and abilities, to coach, motivate, and empower them for success.
#J-18808-Ljbffr