"Alerted.org

Job Description

Insight Global's client in the consumer packaged goods industry is seeking an experienced Sr, Information Security Analyst with 3 to 4 years of experience in Vulnerability Management, Security Automation, and Risk Mitigation. This role requires strong programming skills (Python, PowerShell, Bash, or equivalent) to develop scalable automation solutions for vulnerability detection, remediation, and reporting. The ideal candidate will have deep expertise in Tenable, ServiceNow Vulnerability Response (VR) module, Configuration Compliance, and third-party security platforms (Okta, SAP, ServiceNow, Salesforce, M365).

As a senior analyst, you will be responsible for leading vulnerability management initiatives, driving security automation strategies, integrating security data into ServiceNow, and providing technical guidance to junior analysts. You will also play a key role in maturing the vulnerability management program, enhancing risk visibility, and improving remediation efficiency through automation.

Key Responsibilities include:

-Security Automation & API Development

-Develop, optimize, and maintain automation scripts in Python, PowerShell, or Bash to streamline vulnerability management and remediation.

-Design API-driven integrations between Tenable, ServiceNow VR, and ITSM platforms for automated vulnerability tracking and reporting.

-Automate security workflows, including vulnerability ingestion, prioritization, ticketing, and remediation orchestration.

-Develop and maintain custom security tools to enhance scanning, reporting, and response capabilities.

-Vulnerability Management & Risk Prioritization

-Lead enterprise-wide vulnerability assessments using Tenable, Qualys, or Nexpose, ensuring comprehensive risk identification.

-Implement risk-based prioritization models using automation to focus on critical security threats.

-Maintain and optimize the ServiceNow Vulnerability Response (VR) module for seamless vulnerability lifecycle management.

-Work closely with IT and development teams to ensure timely and effective remediation efforts.

-Security Platform & ServiceNow Integration

-Oversee the full integration of Tenable vulnerability data into ServiceNow VR for enhanced tracking and automation.

-Improve Configuration Compliance monitoring by developing automated controls for audit findings and remediation workflows.

-Ensure that security data is accurate, actionable, and seamlessly integrated with IT operations.

-Network & Security Protocols Expertise

-Apply expert knowledge of networking and security protocols (e.g., TCP/IP, HTTP/S, SSH, FTP, DNS, SSL/TLS, VPNs, RDP) to identify security risks.

-Understand common port numbers (e.g., 443 (HTTPS), 22 (SSH), 3389 (RDP), 53 (DNS), 445 (SMB)) and assess their security implications.

-Collaborate with network and firewall teams to enhance segmentation, reduce attack surfaces, and enforce security policies.

-Security Operations & Compliance Automation

-Lead compliance automation initiatives to align with PCI-DSS, NIST, ISO 27001, and CIS benchmarks.

-Develop scripts and automation tools to generate compliance reports, track remediation progress, and reduce manual overhead.

-Stay ahead of emerging threats, vulnerabilities, and regulatory requirements, continuously improving security automation strategies.

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form (https://airtable.com/app21VjYyxLDIX0ez/shrOg4IQS1J6dRiMo) . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

-4-5 years of experience in cybersecurity, vulnerability management, and security automation.

-Strong knowledge of ServiceNow CC and VR- configuration, automation, and integration.

-Experience managing security configurations for third-party platforms (Okta, SAP, ServiceNow, Salesforce, M365).

-Expertise in API development and integration between security tools (Tenable, ServiceNow, ITSM platforms).

-Strong understanding of network security protocols and common port numbers.

-Critical thinking skills

-Basic scripting and coding skills in Python, PowerShell, Bash or equivalent languages with the ability to write, optimize, and maintain scripts for security automation -Security certifications (CISSP, OSCP, GIAC, AWS Security Certs)

-Experience with cloud security automation (AWS, Azure, GCP).

-Knowledge of infrastructure-as-code (Terraform, Ansible) for security automation.

-Familiarity with security frameworks like MITRE ATT&CK, NIST, CIS Benchmarks.

-SAP experience null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].