Application Vulnerability Management Specialist, Associate

About The Position

Requirements

• Education: Bachelor's degree in Computer Science, Information Security, or a related field.
• Experience: Minimum of 3-5 years of experience in application security, vulnerability management, or a related field.
• Technical Skills: Proficiency with vulnerability scanning tools (e.g., Tenable, Rapid7), and familiarity with security frameworks and standards (e.g., NIST, CISA).
• Communication: Excellent verbal and written communication skills, with the ability to effectively communicate complex security issues to technical and non-technical stakeholders.
• Problem-Solving: Strong analytical and problem-solving skills, with the ability to think critically and make sound decisions under pressure.
• Team Player: Ability to work collaboratively in a team environment and build strong relationships with colleagues across different departments.

Nice To Haves

• Relevant certifications such as CISSP, CEH, or OSCP are preferred.
• Experience with SaaS Security Posture Management (SSPM) tools and external attack surface management.
• Knowledge of breach attack simulation and configuration auditing.
• Familiarity with application security testing methodologies, including Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST).

Responsibilities

• Vulnerability Assessment: Conduct regular vulnerability assessments to identify security weaknesses.
• Risk Evaluation: Evaluate the severity of vulnerabilities and prioritize remediation efforts based on risk assessment.
• Remediation Coordination: Collaborate with application owners, developers, and IT operations to develop and implement remediation plans for identified vulnerabilities.
• Monitoring and Reporting: Continuously monitor the application environment for new vulnerabilities and provide regular reports on the status of vulnerability management efforts.
• Training and Awareness: Provide training and awareness programs to educate staff on application security best practices and vulnerability management processes.
• Compliance: Ensure compliance with relevant security standards and regulations, such as NIST, CISA, and internal security policies.

Benefits

• annual discretionary incentive and retention bonus
• competitive employee benefits
• medical coverage
• dental coverage
• vision coverage
• 401(k)
• life insurance
• accident insurance
• disability insurance
• wellness programs
• paid time off packages that include planned time off (e.g., vacation)
• unplanned time off (e.g., sick leave)
• paid holidays
• paid parental leave