Vulnerability Management Specialist

About The Position

Requirements

• patching
• configuration compliance enforcement
• automation remediation at scale
• MECM
• Active Directory
• Group Policy
• powershell scripting
• linux
• Scorch
• Tenable scan findings
• Review Vulnerabilities
• Proficient with scripting (eg. Bash – Powershell).
• Implementation experience doing security management of domains/service accounts.
• Proficient with security best practices in server configuration, tool development, and access controls.
• Proficient with administration of Linux or other Unix variants (Ubuntu, CentOS, RedHat, Solaris, etc) in a production environment.
• Use of CyberArk or similar product
• Proficient with administration, automation, and orchestration of large-scale Windows and Linux environments using configuration management solutions such as DSC, MECM/SCCM, Intune, and Ansible Automation Platform.
• Leverage systems management and automation with self-repair rather than relying on alarming and human intervention.
• Proficient with correlation and monitoring solutions such as Splunk, Application Insights, Azure Monitor, or SCOM.
• Proficient with Active Directory administration and able to support access management operations.
• Familiar with NTLM and Kerberos authentication protocols, administration, and hardening.
• Strong written and verbal interpersonal skills.
• Strong customer focus, ownership, bias for action and the ability to dive deep.
• Excellent problem solving and analytical skills with attention to detail and driving issues to resolution.
• Demonstrated ability to learn new skills and apply learned knowledge.
• Demonstrated ability to prioritize and execute multiple tasks.
• Support team continuous improvement by looking for ways to streamline and automate processes and improve customer satisfaction.
• DevOps mindset practitioner and change agent.

Nice To Haves

• Candidates with relevant certifications are preferred, including but not limited to the following:
• ITIL Foundations
• Configuration: RHCE-Ansible
• Linux – RHCE, CompTIA Linux+, GCUX, LPI
• Microsoft: Azure Administrator, Azure DevOps Engineer, Azure Architect, MCSE

Responsibilities

• Execute vulnerability remediation efforts across Windows and Linux platforms, using MECM, Intune and Ansible Automation Platform.
• Develop and maintain automated playbooks and workflows to reduce manual remediation tasks.
• Work closely with Security to interpret Tenable scan findings and translate them into actionable remediation activities.
• Track remediation progress, SLAs, and exceptions; provide regular reporting to leadership.
• Available outside of business hours to respond to service incidents as part of an on-call rotation.
• Leverage configuration management tools for infrastructure in a hybrid cloud model.
• Support Service Operations including incident, problem, change, and request fulfillment.
• Monitor, administer, upgrade, and patch production infrastructure and applications per standard procedures and runbooks.
• Contribute to standard operating procedures, documentation, and support operations tempo.
• Support compliance program requirements including audits.

Benefits

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)