Job Details

Home

Hiring - Cyber Security Engineer -- Vulnerability Management - REMOTE at Remote, Remote, USA

From:
Peter,
EISINC
peter@eliteisinc.com
Reply to: peter@eliteisinc.com

Hello All

I hope this message finds you well!

Please have a look at the below position and let me know if you would like to apply.

Title: Sr Cyber Security Engineer -- Vulnerability Management
Location: Remote
Duration: Long Term

Description
Specific Skills/Knowledge

Experience configuring and managing the following:

o Vulnerability management platforms such as Rapid7 InsightVM, Qualys, Tenable.io

o Cloud security posture management tools such as Rapid7 Insight CloudSec, MS Defender for Cloud

o SAST/SCA/DAST/IAS tools such as Insight AppSec, Burp Suite Pro, SonarCloud

o UBA/UEBA SIEM platforms such as Secureworks, Insight IDR, Exabeam, Securonix

Advanced knowledge of system and application security threats and vulnerabilities e.g., buffer overflow, cross-site scripting, SQL injection, covert channels, MITM replay attacks

Experience with offensive security tools and techniques, red team, purple team

Experience with benchmarking and hardening systems and assets using CIS, STIG, etc.

Experience maturing vulnerability management programs and procedures

o Email protection technologies and techniques such as Proofpoint TAP/TRAPS, MS Defender for O365

o Next-gen endpoint solutions such as Cortex XDR

o CASB solutions such as MCAS

o DLP solutions such as MS Purview, Symantec

o Identity and Access Management solutions MFA, SSO, password vaulting

o NAC and remote access solutions such as Global Protect, Anyconnect, etc.

o Proxy solutions such as Prisma Access, Netscaler, etc.

o Rules and threat protections on firewalls such as Palo Alto, Fortinet, Cisco

Multiple cybersecurity related certifications from vendors such as: ISC2, SANS, CompTIA, EC-Council, AWS/Azure/Google, Offensive Security highly preferred

Incident detection, incident response, and forensics

Understanding of SOAR technology and solutions such as XSOAR, Swimlane, etc

Knowledge of HIPAA security and governance rules

Experience with the OWASP Top 10

Experience with the MITRE Attack Framework

Experience using security frameworks such as NIST CSF, ISO, HITECH

Basic knowledge of OSINT, deep web, dark web

Basic scripting experience in Python, Power, or similar preferred

Demonstrated ability to document standard operating procedures

Experience working with various teams such as Infrastructure, Application Development, and Compliance

Excellent verbal and written communication skills, clear articulation of complex issues, and problem-resolution skills a must

Thanks

Keywords:

peter@eliteisinc.com
View All

12:01 AM 23-Nov-22

To remove this job post send "job_kill 161400" as subject from peter@eliteisinc.com to usjobs@nvoids.com. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to peter@eliteisinc.com -

To

Subject
Message -

peter@eliteisinc.com wrote:
From:
                                   Peter,
                                   EISINC                                            
       peter@eliteisinc.com
       Reply to:   peter@eliteisinc.com

Hello All

I hope this message finds you well!

Please have a look at the below position and let me know if you would like to apply.

Title: Sr Cyber Security Engineer -- Vulnerability Management
Location:  Remote
Duration: Long Term

Description
Specific Skills/Knowledge

Experience configuring and managing the following:

o   Vulnerability management platforms such as Rapid7 InsightVM, Qualys, Tenable.io

o   Cloud security posture management tools such as Rapid7 Insight CloudSec, MS Defender for Cloud

o   SAST/SCA/DAST/IAS tools such as Insight AppSec, Burp Suite Pro, SonarCloud

o   UBA/UEBA SIEM platforms such as Secureworks, Insight IDR, Exabeam, Securonix

Advanced knowledge of system and application security threats and vulnerabilities e.g., buffer overflow, cross-site scripting, SQL injection, covert channels, MITM replay attacks

Experience with offensive security tools and techniques, red team, purple team

Experience with benchmarking and hardening systems and assets using CIS, STIG, etc.

Experience maturing vulnerability management programs and procedures

o   Email protection technologies and techniques such as Proofpoint TAP/TRAPS, MS Defender for O365

o   Next-gen endpoint solutions such as Cortex XDR

o   CASB solutions such as MCAS

o   DLP solutions such as MS Purview, Symantec

o   Identity and Access Management solutions MFA, SSO, password vaulting

o   NAC and remote access solutions such as Global Protect, Anyconnect, etc.

o   Proxy solutions such as Prisma Access, Netscaler, etc.

o   Rules and threat protections on firewalls such as Palo Alto, Fortinet, Cisco

Multiple cybersecurity related certifications from vendors such as: ISC2, SANS, CompTIA, EC-Council, AWS/Azure/Google, Offensive Security highly preferred

Incident detection, incident response, and forensics

Understanding of SOAR technology and solutions such as XSOAR, Swimlane, etc

Knowledge of HIPAA security and governance rules

Experience with the OWASP Top 10

Experience with the MITRE Attack Framework

Experience using security frameworks such as NIST CSF, ISO, HITECH

Basic knowledge of OSINT, deep web, dark web

Basic scripting experience in Python, Power, or similar preferred

Demonstrated ability to document standard operating procedures

Experience working with various teams such as Infrastructure, Application Development, and Compliance

Excellent verbal and written communication skills, clear articulation of complex issues, and problem-resolution skills a must

Thanks

Keywords:

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at me@nvoids.com

Time Taken: 0

Location: ,