Colorado Technology Jobs

Colorado Jobs

Job Information

Coalfire Systems, Inc. Senior Consultant, Vulnerability Management in Westminster, Colorado

Coalfire SystemsCoalfire is an EEO employer. We celebrate diversity and are committed torespecting one another, embracing individual differences, and creating aninclusive environment for all employees.Senior Consultant, Vulnerability ManagementUS-CO-WestminsterJob ID: 2021-3596Type: Regular Full-Time# of Openings: 1Category: Penetration TestingWestminster OfficeOverviewLeading cloud infrastructure providers, SaaS providers, and enterprisesturn to Coalfire for help solving their toughest cybersecurity problems.Through the combination of extensive cloud expertise, technology, andinnovative and holistic approaches, Coalfire empowers clients to achievetheir business objectives, use security and compliance to their advantage,and fuel their continued success. Coalfire has been a cybersecurity thoughtleader for 20 years and has offices throughout the United States and Europe.Responsibilities* Work with some of the leading Cloud Service Providers (CSPs) to validatevulnerability management security posture of their products and services* Monitor and maintain enterprise security scanning tools (Nessus,Qualys, Nexpose, Netsparker, Burp, etc.)* Provide recommendations on remediating host-based and web applicationvulnerabilities* Conduct manual validation to confirm vulnerability closure* Perform analysis to validate justifications for false positives,operational requirements, and risk adjustments* Provide recommendations to optimize processes and procedures related toenterprise security scanning tools* Serve as subject matter expert for vulnerability management issue resolution* Communicate vulnerabilities, solutions, and enterprise trends to alllevels of an enterprise - both technical and non-technical resources, allthe way up to the CIO* Provide periodic reports detailing scan success, remediation efforts,and vulnerability trendsQualifications* BS or above in related Information Technology field or equivalentcombination of education and experience* Three to eight years of vulnerability management experience* Experience scanning for and enumerating vulnerabilities in the GCPenvironment* Demonstrated knowledge in the planning, development, coordination,implementation, and execution of a vulnerability management program* In-depth knowledge of policies, procedures, development, andimplementation of vulnerability identification, scanning, analysis,remediation tactics, and reporting within an organization* In-depth knowledge of risk analysis and vulnerability remediation plandevelopment* In depth knowledge and experience of industry best practices forvulnerability management* Expert level experience in configuring and executing within multiplevulnerability scanning tools* Direct experience working with remediation teams and management onvulnerability remediation and security posture improvement* Experience working in ticketing tools for remediation activities* Familiarity with configuration baseline standards such as CIS Benchmarks orDISA STIGs* Experience creating system inventories, boundary diagrams, and/orplans of actions and milestones (POAandM)Apply Here: