Bilingual Vulnerability Management Analyst

The Vulnerability Management Analyst will provide ongoing support to the information security vulnerability management team. This role is expected to handle operational tickets to maintain vulnerability tools, analyze vulnerabilities, and work to harden configurations for various technologies (baseline/configuration management). Essential Functions: · Maintain vulnerability management meeting with global affiliates, and those minutes, report, and documents · Work on operational tickets for a vulnerability management service · Assist analysis of vulnerabilities by correlating data from various sources · Conduct research on current vulnerabilities and exploits using publicly available, trusted resources and other finished vulnerability products. · Assist in reporting findings to stakeholders as well as recommendations for remediation. · Analyze a policy compliance report and discuss remediation with IT teams · Work with various teams to maintain and improve security control. · Provide basic/initial customer response/support to security issues. Competencies: · Basic understanding of vulnerability scanning tools. · Ability to document, track, and monitor vulnerabilities through a tracking system. · Ability to compile detailed and summary-level reports on vulnerabilities and remediation progress. · Attention to detail, proactive research, effective communication, and teamwork. · Ability to learn and operate in a dynamic environment. · Passion for continuous improvement (kaizen). · Proficient with Microsoft Office (Word, Excel, PowerPoint and Teams), Power BI. · Basic understanding of Japanese language and culture, written communication with Japanese SFCs is a requirement of the job. BA/BS in Computer Science, Information Security, or Information Systems or equivalent related work experience. Basic knowledge of vulnerability management, and configuration management. Experience operating vulnerability and compliance scanning tools such as Qualys, Rapid7 or Tenable Nessus etc. Familiarity with common exploitation techniques and the applications of Common Weakness Enumeration (CWE) and Common Vulnerability Scoring System (CVSS). Experience in a highly collaborative environment with a focus on project delivery and desired business outcomes.