Senior Enterprise Vulnerability Analyst

About The Position

Requirements

• Understanding the nature of a complex, matrixed, global enterprise environment.
• Ability to indirectly influence others to accomplish goals and objectives.
• Strong communication & organizational skills.
• Certification in Qualys Guard.
• 5-7 years Vulnerability Management and or SecOps background.
• 5-7 years ServiceNow experience or similar ITSM tools.
• 3-5 years SCCM administration, package development & deployment.
• 3-5 years of project management experience.
• Strong ITIL framework methodology, governance policies, and associated processes.
• Large Enterprise experience with a >25,000 userbase.
• Proven success in a highly matrixed environment.
• Strong track record of team development and management skills.

Nice To Haves

• Bachelor’s degree in Information Technology or related field, or proven IT professional record.
• Successful track record of collaboration with teams that deliver on operational priorities.
• Demonstrated API integration, Active Directory, LDAP, JAMF, SCCM experience.
• Experience providing on-site and remote technical support for IT infrastructure and end user services.
• Strong written and verbal communication skills across a broad range of personnel across all business functions.
• Experience in a manufacturing environment desirable.
• Experience in a 24/7 high-availability multi-site enterprise environment that includes infrastructure and application hosting, version control, security management, and information protection.
• Ability to work in a virtual global team environment across all time zones.

Responsibilities

• De-risk the GPI enterprise utilizing tools that make up the GPI Operational Stack including but not limited to Qualys, ServiceNow, SCCM, and Sentential One.
• Detection and reporting of all vulnerabilities (including misconfigurations) in all environments such as production & non-production, including but not limited to network, servers, databases, application, and workstations.
• Collaborate with cross-functional, global organizations including IT Service Owners, managed service providers, shared services, and internal business partners.
• Deep dives into vulnerability findings to determine EOL/EOS services and operating systems, following through to ensure service remediation or operational risk exceptions are documented and reported.
• Triage vulnerabilities and application findings to determine required patching, remediation, and prioritization.
• Driving process excellence in the enterprise vulnerability management space performing in a matrixed environment across governance teams.
• Engage with department leaders, project managers, software development, and lines of business to acquire support and evaluate all changes.
• Serve as change agent by leading successful process improvement practices, diagnosing barriers to Enterprise Vulnerability Management success, facilitating resolutions as appropriate.
• Apply industry best practices to maximize efficiencies and achieve adherence to diverse program policy guidelines.
• Drive a regular cadence with stakeholders to gain a holistic perspective of the current state of VM and Patch Management operations.
• Assist with the determination and the scope of the program.
• Provide technical knowledge to operations and various support teams.
• Continually enrich the data quality of ServiceNow and the CMDB.
• Prepare and maintain technical documentation of VM program including requirements, SOP’s, architecture designs, network topology, applications, and application security designs.
• Make strategic decisions based upon status reports related to VM metrics, KPI’s, trending, and compliance.
• Collaborate on information security policies, standards, and baselines and contribute efforts to measure compliance.
• Collaborate on and provide EVM results and metrics for consistent reporting for governance purposes; collaborate and coordinate remediation plans and activities.
• Help develop a long term EVM strategy that will address global information security needs (current state, gaps, and opportunities).

Benefits

• Competitive Pay
• 401(k) w/employer matching
• Health & Welfare Benefits including Medical, dental, vision, and prescription drug coverage.
• Short and Long-Term Disability.
• Life Insurance.
• Accidental Death & Dismemberment (AD&D) Insurance.
• Flexible Spending and Health Savings Accounts.
• Various Voluntary benefits.
• Adoption Assistance Program.
• Employee Discount Programs.
• Employee Assistance Program.
• Tuition Assistance Program.
• Paid Time Off + 11 paid company holidays each year.