Talent.com
Vulnerability Management Specialist

Vulnerability Management Specialist

Open Systems TechnologiesNew York, NY, US
3 hours ago
Job type
  • Full-time
Job description

A financial firm is looking for a Vulnerability Management Specialist in Iselin, NJ or NYC.

Compensation : $105-110k

Responsibilities :

  • As part of the IT Security team, develop and implement firm IT Strategy in consultation with the IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall firm Strategy
  • Research new security related products and services to ensure that firm is equipped with appropriate industry best tools and solutions
  • Operate controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations.
  • Conduct IT Security risk assessments for all high impact projects, defining security mitigating controls that impact the technology architectures of firm, service providers, and business partners
  • Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats
  • Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective / timely resolution with IT Security
  • Maintain relationships with third-party IT security vendors and strategic partners

Vulnerability Identification :

  • Scanning Systems : Use automated tools to perform regular scans on all systems including Networks, Application and endpoints.
  • Threat Client : Stay updated with the latest vulnerability databases (e.g CVE – Common Vulnerability and Exposure) and emerging threats to identify new vulnerabilities that could affect the organization.

    • Vulnerability Identification :

  • Risk Rating : Assign severity ratings to vulnerabilities (e.g. Critical, High, Medium, low) using risk assessment frameworks like CVSS (Common Vulnerability Scoring System)
  • Business Impact : Access the potential impact of each vulnerability on the business including the like hood of exploitation, potential data loss and possible operational disruptions.

    • Vulnerability Remediation :

  • Patch Management : Work with IT and development teams to ensure that patches or updates are applied to systems and applications to fix vulnerabilities.
  • Configuration Changes : Where applicable, make configuration changes to systems or applications to reduce exposure to Vulnerabilities

    • Qualifications :

  • Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
  • S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent);
  • Conduct regular vulnerability scans and assessments across the organization's IT environment using tools like Nessus, Qualys, or Rapid7. These platforms are essential for identifying and prioritizing security weaknesses, providing detailed insights that enable proactive risk reduction.
  • Analyze vulnerabilities and threats, determine their potential impact, and recommend strategies for risk prevention.
  • Coordinate with IT and security teams to prioritize and apply security patches and updates, including managing patch deployments using WSUS, SCCM, or Ansible which are critical for automating and streamlining the update process across large networks, reducing the risk of security breaches, and ensuring compliance with industry standards.
  • Assist in investigating and resolving security incidents, providing expertise on vulnerability exploitation and mitigation.
  • Generate detailed reports on vulnerabilities, their impact, and the status of remediation efforts. Communicate findings to stakeholders.
  • Ensure compliance with relevant security standards, policies, and regulations.
  • Develop and maintain vulnerability management documentation, including policies, procedures, and playbooks, including creating response plans for critical vulnerabilities or emerging threats.
  • Engage in vulnerability management program reviews and continuous improvement initiatives, providing input on enhancements to scanning and reporting processes.
  • Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
  • S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent);
  • Security certifications such as CISSP and at least one GIAC GSEC, GCED, GCIA, GCIH, GREM, GCFR or equivalent is preferred
  • Knowledge of incident handling life cycle based on an established framework : ISO 27035, SANS, NIST SP 800-61, CERT, ENISA
  • Experience with security and automation : Python, Powershell, Windows OS, Linux OS, VMware, Puppet, Chef / Ansible desirable
    • Create a job alert for this search

    Vulnerability Management • New York, NY, US

    Related jobs
    • Promoted
    • New!
    Director, Vulnerability Management

    Director, Vulnerability Management

    Open Systems TechnologiesWoodbridge Township, NJ, US
    Full-time
    A financial firm is looking for a.Director of Vulnerability Management.No visa sponsorship and candidates MUST be local.Develop and lead the enterprise vulnerability management strategy, roadmap, a...Show moreLast updated: 3 hours ago
    • Promoted
    Surgical Authorization Specialist

    Surgical Authorization Specialist

    Progressive Spine and Orthopaedics LLCClifton, NJ, United States
    Full-time
    JOB TITLE : Surgical Authorization Specialist SUMMARY : The Surgical Authorization Specialist at Progressive Spine & Orthopaedics is responsible for securing and managing surgical authorizat...Show moreLast updated: 3 days ago
    • Promoted
    Cloud Security Specialist - USDS

    Cloud Security Specialist - USDS

    Tik TokNew York, NY, United States
    Full-time
    About the Team The Cloud Security team is responsible for administering security controls across a multi-cloud environment. The team partners with key stakeholders to design and implement the cloud ...Show moreLast updated: 4 days ago
    • Promoted
    Health Specialist (Temporary and Remote)

    Health Specialist (Temporary and Remote)

    MAXIMUSNewark, NJ, United States
    Remote
    Full-time
    Maximus is looking to fill a limited service (Temp) Health Specialist position.The Health Specialist role is to provide advanced and accurate clinical inquiry responses to health related, disease c...Show moreLast updated: 2 days ago
    • Promoted
    Senior Manager, Cyber Operations

    Senior Manager, Cyber Operations

    Becton Dickinson & CompanyFranklin Lakes, NJ, United States
    Full-time
    The Senior Manager, Cybersecurity Operations provides oversight and leadership for the global 24 / 7 Security Operations Center (SOC), ensuring continuous threat detection, monitoring, and initial tr...Show moreLast updated: 4 days ago
    • Promoted
    Bomb Technical

    Bomb Technical

    U.S. NavyRahway, NJ, United States
    Full-time
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.Americans live for fireworks on the Fourth of July. The other 364 days of the year, Explosive Ordnance Disposal (...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Complience Specialist

    Senior Complience Specialist

    Creative Financial StaffingStamford, CT, US
    Full-time
    Up to $125,000 per year (commensurate with experience).Why This Senior Compliance Specialist Position?.This is a high-visibility role offering up to $125K annually, where you'll partner directly wi...Show moreLast updated: 16 days ago
    • Promoted
    Pre-Authorization Specialist - Temporary to hire

    Pre-Authorization Specialist - Temporary to hire

    JobotEast Brunswick, NJ, US
    Full-time
    Temporary to hire / Full health benefits / $$$.This Jobot Consulting Job is hosted by : Billy Mewton.Are you a fit? Easy Apply now by clicking the "Apply Now" button and sending us your resume.Jobot i...Show moreLast updated: 3 days ago
    • Promoted
    Compliance and QI Specialist | Mental Health

    Compliance and QI Specialist | Mental Health

    Collaborative Support ProgramsFreehold, NJ, United States
    Full-time
    CSPNJ, a mental health nonprofit agency, is looking for a full-time Compliance & QI Specialist.Working under the direction of the QI Director, the Specialist provides administrative and clerical su...Show moreLast updated: 3 days ago
    • Promoted
    Sr. Turbine Specialist

    Sr. Turbine Specialist

    CovantaFlorham Park, NJ, United States
    Full-time
    For more than 40 years, Reworld has been a leader in sustainable waste solutions, providing our customers with innovative solutions that help them achieve carbon-negative outcomes.Reworld is leadin...Show moreLast updated: 4 days ago
    • Promoted
    Sr. Turbine Specialist

    Sr. Turbine Specialist

    ReworldFlorham Park, NJ, United States
    Full-time
    For more than 40 years, Reworld has been a leader in sustainable waste solutions, providing our customers with innovative solutions that help them achieve carbon-negative outcomes.Reworld is leadin...Show moreLast updated: 4 days ago
    • Promoted
    Senior Associate, Security Governance Risk and Compliance (SoQC)

    Senior Associate, Security Governance Risk and Compliance (SoQC)

    KPMGStamford, CT, United States
    Full-time
    Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering re...Show moreLast updated: 4 days ago
    • Promoted
    Senior Manager of Cybersecurity Detection Engineering

    Senior Manager of Cybersecurity Detection Engineering

    CoxPelham Manor, NY, United States
    Full-time
    The Senior Manager of Cybersecurity Detection Engineering will lead a team of Detection Engineers in designing, implementing, and maintaining advanced detection capabilities to safeguard the organi...Show moreLast updated: 30+ days ago
    • Promoted
    Vulnerability Management - Hybrid

    Vulnerability Management - Hybrid

    The Dignify Solutions LLCNew York, NY, United States
    Full-time
    Design, implement, and manage a comprehensive vulnerability management program aligned with industry best practices (e.Proven experience in designing, implementing, and managing vulnerability manag...Show moreLast updated: 4 days ago
    • Promoted
    Head of Cyber Incident Response & Cyber Threat Mitigation Services

    Head of Cyber Incident Response & Cyber Threat Mitigation Services

    Guardian LifeHolmdel, NJ, United States
    Full-time
    Do you want to be part of a collaborative team handling potentially challenging situations as a leader of our cyber incident response and threat mitigation? The ideal candidate demonstrates analyti...Show moreLast updated: 4 days ago
    • Promoted
    Search & Rescue

    Search & Rescue

    U.S. NavyNew Brunswick, NJ, United States
    Full-time +1
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.When lives are on the line, Navy Aviation Rescue Swimmers (AIRRs) are exceptionally adept at answering the call....Show moreLast updated: 30+ days ago
    • Promoted
    Head of Cyber Incident Response & Cyber Threat Mitigation Services

    Head of Cyber Incident Response & Cyber Threat Mitigation Services

    Guardian Life Insurance CompanyHolmdel, NJ, United States
    Full-time
    Do you want to be part of a collaborative team handling potentially challenging situations as a leader of our cyber incident response and threat mitigation? The ideal candidate demonstrates analyti...Show moreLast updated: 4 days ago
    • Promoted
    Lead Threat Intelligence Specialist

    Lead Threat Intelligence Specialist

    ADPRoseland, NJ, United States
    Full-time
    ADP is currently looking to hire a.Lead Threat Intelligence Specialist.Are you interested in joining the ADP Global Security Organization (GSO), Converged Security Services (CSS) Team?.If you are p...Show moreLast updated: 4 days ago