Cybersecurity Threat​/Vulnerability Management Engineer

Location:

St Paul, MN
•

Employment type:

Full-time

I have a full time opportunity for a Cybersecurity Threat/Vulnerability Management Engineer to join one of our top tier financial organizations in St Paul, MN. This role will work with a team of Cybersecurity Engineers on the Threat Vulnerability Management team to enhance the security infrastructure and security processes against the latest threats for the organization.

The Threat and Vulnerability Management Engineer is responsible for validating and managing vulnerabilities, as well as managing scanning and monitoring activities, prioritizing and tracking remediation, and driving continuous improvement of vulnerability management practices.

This role is 4 days onsite, 1 day remote

This opportunity does come with a very generous salary and bonus

• Execute security assessments to assess potential vulnerability and determine best mitigating controls
• Select and oversee technology solutions for vulnerability scanning, asset inventory, configuration monitoring, threat intelligence, and dashboards/reporting.
• Conduct regular vulnerability scans, reviews, risk ratings, and penetration tests for all assets and environments.
• Prioritize vulnerability and penetration test remediation based on severity ratings and business criticality.
• Build partnerships with developers, IT teams and business leaders to effectively push remediation of critical application and infrastructure vulnerabilities.
• Track and report on vulnerability and pen test tickets/findings from identification through remediation.
• Communicate technical risk and vulnerability data to leadership using impactful visualizations and metrics.
• Continually refine vulnerability management program components to improve efficiency, coverage, and integration with other processes.

• Extensive experience working with managing enterprise-wide vulnerability management programs
• Expert knowledge of vulnerability assessment tools, techniques, scan tools (Rapid7, Nessus, Qualys, Nmap)
• Hands-on expertise working with enterprise network architectures, Linux and Windows OS
• Experience performing and managing application and network penetration tests
• Experience with vulnerability prioritization frameworks and remediation workflows
• Risk management expertise with ability to translate technical risks for business leaders
• Excellent written and verbal communication skills
• Strong analytical and data analysis capabilities

Senior Technical Recruiter, PRI Technology

Direct:

Office:  x27

Cell:

• Mid-Senior level

• Full-time

• Information Technology

• Financial Services
• Retail
• Manufacturing

• 401(k)
• Vision insurance
• Medical insurance
• Disability insurance
• Student loan assistance
• Tuition assistance