Enterprise Vulnerability Management - Sr. Security Specialist

Company: Us Tech Solutions
Location: Kissimmee
Posted on: January 3, 2022

Job Description:

Title: Enterprise Vulnerability Management - Sr. Security SpecialistLocation: Celebration FL 34747 OR Seattle WA 98104 OR Bristol CT 06010 OR Burbank CA 91506 Duration: 12 Months Contract
Job Description:were storytellers. We make the impossible, possible. The client is a world-class entertainment and technological leader. Walts passion was to continuously envision new ways to move audiences around the worlda passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences and were constantly looking for new ways to enhance and protect these exciting experiences.The Global Information Security (GIS) group provides services and solutions to protect the value and use of client information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.In order to ensure that our services keep client secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:1. Analysis of known and emerging threats to determine risks against client assets2. Creation, maintenance, governance and communication of security policies and standards across client3. Assessment and audit of compliance against the security policies and standards4. Assurance that client assets are effectively managed and monitored to meet client security criteriaWe look add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, arecontinuous learners, passionate about information security and love their work. Project Management of Enterprise Vulnerability Management Projects Organizing scrum meetings and daily stand ups to facilitate project completion Investigate solutions and mitigation for vulnerabilities present within the Enterprise, and propose remediation in collaboration with the subject matter experts Validate vulnerabilities remediated, including verification of ability to verify false positives Perform barrier analysis on vulnerability remediation and work with Information Security and Operations teams to identify and recommend corrective measures Support execution of vulnerability management program through meeting facilitation, activity measurement, customer engagement, and program education Identify and execute on continuous improvement and expansion opportunities for enterprise vulnerability management services Perform data analysis of diverse and historical data sets in support of vulnerability management project and program decisions. Evangelize the vulnerability management program and facilitate customer collaboration for program improvement
The ideal candidate will have a background in information security disciplines and vulnerability management. He or she will have broad knowledge of infrastructure, operating system, public cloud hosting services, and application technologies, an ability to quickly perform in-depth analysis across diverse technologies implemented in a complex environment. He or she should be familiar with writing and publishing information security
Basic Qualifications The Sr. Security Specialist, Enterprise Vulnerability Management will be a direct report to the Manager, Enterprise Vulnerability Management, and has a broad range of responsibilities within the Global Information Security vulnerability management program, with emphasis on communication and coordination of enterprise-level remediation, vulnerability validation,, and customer engagement to ensure the removal of vulnerabilities from the technology environment. This role will coordinate and work closely with other teams across ,including compliance managers, security liaisons, application and business groups, and suppliers to validate the consistent and successful remediation of vulnerabilities across the client. The superior candidate will actively seek opportunities to expand program offerings and improve effectiveness. This position will actively socialize Information Security and vulnerability management, encouraging a community of best practice throughout our partner base. Fostering and enhancing segment relationships by establishing a robust Segment Community of Practice program to keep partners engaged and on track for success.
Preferred Qualifications Project management experience with a focus on Scrum/Agile methodology Guiding the Enterprise Vulnerability Management team on how to use Agile/Scrum practices and values to drive project progress Proven knowledge of core Internet and networking protocols (DNS, DHCP, TCP/IP, ARP, HTTP, HTTP/S, SSH) and IP communication is required. Proven knowledge of data center infrastructure technologies is required: Windows and Linux operating systems, clustering technology, data storage solutions, middle ware technology, and monitoring technologies. Knowledge of public cloud hosting service providers and cloud security Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams Ability to investigate and analyze complex scenarios and solve problems in innovative ways Passionate about using data to solve pressing and/or difficult questions Ability to work effectively in a cross-functional and highly collaborative environment; shares responsibility well and is flexible in work assignments. Ability to manage multiple priorities and work effectively in a fast-paced, high volume, results driven environment. Ability to rapidly assess a situation and identify, isolate and communicate problems and issues Able to engage individuals and teams to evangelize processes, provide guidance constructively and in the context of the business need. Able to produce and review process and procedural documentation, including knowledge base articles, workflows, and overview presentations, all with great attention to detail. Superior judgment, problem resolution, team building, negotiation, and decision-making skills as well as the ability to work under continual deadline pressure. Applies skills as a seasoned experienced professional with a full understanding of industry practices and company policies and procedures. Resolves a wide range of issues in imaginative and as well as practical ways. Able to remain productive despite ambiguity; uses professional concepts and company objectives to resolve complex issues creatively and effectively. Able to scope tasks, technical requirements and estimate timelines independently for medium-to-large size projects.
Required Education BS degree or equivalent work experience
Additional Information High School Diploma or equivalent Some college courses or associates degree with focus in engineering, sciences, or IT Minimum 5 years of practical technology experience with some experience in information security discipline. Must have knowledge of and experience applying information security components, principles, practices, and procedures Some experience with SQL languages (SQL, T-SQL) with advanced analytic SQL functions skills on the Microsoft SQL Server database platform
One or more of the following certifications: CISSP Certified Information Systems Security Professional SANS- GIACby Jobble

Keywords: Us Tech Solutions, Kissimmee , Enterprise Vulnerability Management - Sr. Security Specialist, Executive , Kissimmee, Florida