Senior Vulnerability Management Engineer

100% Remote

Senior Vulnerability Management Engineer

Description:

Key Responsibilities Conduct vulnerability (Internal and PCI-DSS) scans, analyze reports, and validate potential findings; contribute to process improvements; and documentation for Client and its subsidiaries. Configure and manage vulnerability scanners for both VM and Container (Kubernetes) environments, including their integration into software development lifecycle. Build and manage reporting to track Vulnerability remediation for Client and its subsidiaries Must be able to interface and coordinate work efficiently and effectively with business colleagues and vendors in global locations and time zones Requirements: 3 to 5 years of demonstrated ability within information security vulnerability management including the remediation process to address Operating System (Linux/Unix) vulnerabilities and misconfigurations. Experience with Public Cloud Security (GCP/AWS/Azure) and/or Kubernetes environments that include building, deploying and supporting containerized images in Cloud environments. Experience with continuous delivery and integration (CI/CD) in Cloud and infrastructure engineering, and related tools (Jenkins/Tekton, Github etc.) Self-starter with a bias towards action and can thrive in a fast-paced and ambiguous environment

Desired qualifications: Experience with security vulnerability management tools is a plus (e.g. Tenable, Anchore). Experience using ServiceNow, including features (related to Vulnerability Response and Orchestration) within ServiceNow is highly preferred Experience with programming or scripting languages such as Python/Go, or Bash/PowerShell.

E-Verify: United States Employment Opportunities Only

E-Verify is an internet-based system operated by the Department of Homeland Security and the Social Security Administration and allows employers to confirm an individual s employment eligibility to work in the United States. Under the E-Verify rules, effective September 8, 2009, federal agencies subject to the Federal Acquisition Regulation are required to modify, and include in new contracts, a provision that requires federal contractors and subcontractors to use E-Verify. ITCO Solutions is required to adhere to these requirements.

This message is intended for the use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.

Apply Job!

Apply to this Job