• Vulnerability Management Analyst-Qualys SME

    TEKsystems (Atlanta, GA)


    Job Title: Vulnerability Management Analyst-Qualys SME

     

    Work Placement Type: Hybrid ( Remote Monday & Friday (Onsite Tue, WED, THUR)_ Some flexibility

     

    Top Skills - Must Haves

     

    + Client

    + Network

    + Corporate

    + Field

    + Plant

    + Support

    Top Skills Details:

    Qualys SME:

    + Backlog Remediation

    + Qualys WAS to ServiceNow

    + Qualys Patch Management

    + Qualys API

    + Creating scripts and formulas for patch reporting

    Good To Have Skills:

    + Network Security Operations,

    + Python Programming Language

    + Infrastructure Remediation

    + Vulnerability Management Operations

    Description

    Key Responsibilities:

    1. Experience in one or more vulnerability scanning tools

    2. Excellent knowledge in infrastructure operations/software delivery, techniques, and technologies

    3. Provide recommendations for continuous improvements in Security Operations

    4. Experience in management reporting and Metrics Reporting

    5. Experience in defining standards for Operating systems and/or applications

    6. Certifications like CEH, OSCP, GPEN, or other information security or IT platform certifications

    Technical Experience :

    1. Deep understanding of OS level Security

    2. Deep understanding of patching/ vulnerability remediation

    3. Deep knowledge of networking or Server Administration

    4. Experience in one or more information security technologies like Vulnerability Management, Server Configuration Compliance, Patch Management, Information Security Standards for OS and Applications

    5. Scripting knowledge on Python preferred, knowledge of SCCM Return Codes, MSinstaller package compilation, and Understanding of Regedit and scripted batch changes.

    MISSION / SUMMARY:

    Enterprise Vulnerability Management covers server, cloud, workstations, applications, appliances, and mobile devices to ensure all risk mitigation activities are performed in a timely manner to de-risk and protect enterprise assets from cyber threats.

     

    The primary mission includes evaluating security vulnerabilities, assessing risk and impact, to protect the company from internal and external threat vectors. Utilization of a host of operational and cyber tools to discover, prioritize, and automate methods towards vulnerability management tasks.

    Primary Responsibilities:

    + The Enterprise Vulnerability Analyst will be responsible for assisting in the continual development and growth of the Enterprise Vulnerability Management, or EVM, program. This role will be collaborating with cross-functional and technical teams in a global, matrixed environment with the goal to de-risk the company. Additional activities will include revising existing documentation and process models, as well as assisting in the implementation of new, innovative methodologies of vulnerability management as necessary.

    + The analyst must be technically competent, being capable of identifying process, security, and general technical gaps that could cause security events, and follow defined procedures for mitigating threats.

    + De-risk the company's enterprise by utilizing tools that make up the company's Operational Stack, including but not limited to Qualys, ServiceNow, SCCM, and Sentential One

    + Detection and reporting of all vulnerabilities (including misconfigurations) in all environments, such as production & non-production, including but not limited to network, servers, databases, applications, and workstations.

    + Collaborate with cross-functional, global organizations, including IT Service Owners, managed service providers, shared services, and internal business partners

    + Deep dives into vulnerability findings to determine EOL/EOS services and operating systems, following through to ensure service remediation or operational risk exceptions are documented and reported

    + Triage vulnerabilities and application findings to determine required patching, remediation, and prioritization

    + Driving process excellence in the enterprise vulnerability management space, performing in a matrixed environment across governance teams

    + Engage with department leaders, project managers, software development, and lines of business to acquire support and evaluate all changes

    + Serve as a change agent by leading successful process improvement practices, diagnosing barriers to Enterprise Vulnerability Management success, and facilitating resolutions as appropriate

    + Apply industry best practices to maximize efficiencies and achieve adherence to diverse program policy guidelines

    + Drive a regular cadence with stakeholders to gain a holistic perspective of the current state of VM and Patch Management operations

    + Assist with the determination and the scope of the program

    + Provide technical knowledge to operations and various support teams

    + Continually enrich the data quality of ServiceNow and the CMDB

    + Prepare and maintain technical documentation of VM program, including requirements, SOPs, architecture designs, network topology, applications, and application security designs

    + Make strategic decisions based upon status reports related to VM metrics, KPI’s, trending, and compliance

    + Collaborate on information security policies, standards, and baselines, and contribute efforts to measure compliance

    + Collaborate on and provide EVM results and metrics for consistent reporting for governance purposes; collaborate and coordinate remediation plans and activities

    + Help develop a long-term EVM strategy that will address global information security needs (current state, gaps, and opportunities)

    DESIRED SKILLS:

    + Understanding the nature of a complex, matrixed, global enterprise environment, where the coordination of the various business and technical teams’ timelines is paramount for execution and success in this role

    + Ability to indirectly influence others to accomplish goals and objectives

    + Strong communication & organizational skills

    + Certification in Qualys Guard

    + 5-7 years of Vulnerability Management and or SecOps experience

    + 5-7 years of ServiceNow experience or similar ITSM tools

    + 3-5 years SCCM administration, package development & deployment

    + 3-5 years of project management experience

    + Strong ITIL framework methodology, governance policies, and associated processes

    + Large Enterprise experience with a >25,000 userbase

    + Proven success in a highly matrixed environment

    + Strong track record of team development and management skills

    EDUCATION/ EXPERIENCE:

    + Bachelor’s degree in Information Technology or related field, or proven IT professional record

    + Successful track record of collaboration with teams that deliver on operational priorities

    + Demonstrated API integration, Active Directory, LDAP, JAMF, SCCM experience

    + Experience providing on-site and remote technical support for IT infrastructure and end-user services

    + Strong written and verbal communication skills across a broad range of personnel across all business functions. Experience in a manufacturing environment is desirable

    + Experience in a 24/7 high-availability multi-site enterprise environment that includes infrastructure and application hosting, version control, security management, and information protection

    + Ability to work in a virtual global team environment across all time zones

    Benefit Program:

    + Competitive Pay

    + 401(k) w/employer matching

    + Health & Welfare Benefits

    + Medical, dental, vision, and prescription drug coverage

    + Short and Long-Term Disability

    + Life Insurance

    + Accidental Death & Dismemberment (AD&D) Insurance

    + Flexible Spending and Health Savings Accounts

    + Various Voluntary Benefits

    + Adoption Assistance Program

    + Employee Discount Programs

    + Employee Assistance Program

    + Tuition Assistance Program

    + Paid Time Off + 11 paid company holidays each year

     

    Skills

     

    Client, Network, Corporate, Field, Plant, Support

     

    Additional Skills & Qualifications

    Technical Experience :

    1. Deep understanding of OS level Security

    2. Deep understanding of patching/ vulnerability remediation

    3. Deep knowledge of networking or Server Administration

    4. Experience in one or more information security technologies like Vulnerability Management, Server Configuration Compliance, Patch Management, Information Security Standards for OS and Applications

    5. Scripting knowledge on Python preferred, knowledge of SCCM Return Codes, MSinstaller package compilation, and Understanding of Regedit and scripted batch changes.

    Experience Level

    Expert Level

    Pay and Benefits

    The pay range for this position is $50.00 - $68.00/hr.

     

    Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

     

    Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)

     

    Workplace Type

     

    This is a hybrid position in Atlanta,GA.

     

    Application Deadline

     

    This position is anticipated to close on Oct 17, 2025.

    h4>About TEKsystems:

    We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

     

    The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

    About TEKsystems and TEKsystems Global Services

    We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

     

    The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.