"Alerted.org

Job Description

Insight Global is looking for a Threat and Vulnerability Analyst to sit remote for a large pharmaceutical client. This role will be joining the Security organization and will report to the Associate Director of Threat and Vulnerability Management. The main responsibility of this role is to identify, assign, and validate remediation of compute environment vulnerabilities and misconfigurations. This includes on-prem, hybrid, and multi-tenant cloud environments. This position supports and enables the company’s global (US (United States), EU (European Union), APAC) cybersecurity defense posture. 100% of this role will be living in the tools, and transacting on findings in them, assessing the findings and being proactively searching. This TVM Analyst should know how to get insights from complete or incomplete data. Other duties may include managing cybersecurity vulnerabilities and risks across the company including identifying and supporting application and system owners to manage risks and remediate vulnerabilities. They will also conduct vulnerability and security compliance assessments of scans of servers, websites, workstations, serverless technology, network devices, cloud infrastructure, and other assets using various vulnerability management platforms and tools. This role will create/edit/analyze enterprise cybersecurity policies and configurations to evaluate compliance with regulations and enterprise policies and standards and collect, report, and metrics generation for multiple cyber TVM datasets. This includes patching efficiency, identifying system misconfigurations, and security hygiene assessments. The ideal candidate will have strong corporate experience and be able to come in and get started with limited ramp up. Pay is around 70/hr.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

-6-8 years exp as Treat and Vulnerability Analyst

-Strong recent experience in and vulnerability assessment, prioritization, assignment, validation, and tracking

-Cybersecurity tool familiarity for ex. CAASM (Cyber Asset Attack Surface Management), EASM (External Attack Surface Management), RBVM (Risk Based Vulnerability Management), CNAPP (Cloud Native Application Protection Platform), EDR (Endpoint -Detection and Response)

-Familiarity with CIS Security Controls, MITRE ATT&CK Framework

-Working knowledge of multi-tenant cloud environments (AWS, Azure, GCP), vulnerability mitigation techniques, and system hardening

-Recent experience leverage industry and compute environment data to assess current and alternative technical solutions and processes for continuous enhancement and issue resolution.

-Ability to understand threat modeling and apply technical, administrative, and security control risk mitigation.

-Experience and working knowledge of multi-faceted attack surface management and aggregation tools used by TVM to include Wiz, Censys, SafeBreach, Axonius, Seemplicity (ideally wiz)