CyberSecurity

Job Description

• Engage in day-to-day tasks of the Vulnerability and Threat Management Service Team including, but not limited to the following:

• Interface with external clients and prospects

• Assist in provisioning / architecture / configuration of client deployments

• Configure / schedule vulnerability / compliance scans

• Review scan data

• Resolve false positives

• Customize reports, dashboards, widgets

• Basic Boolean search operators and query modifiers

• Answer customer / prospect questions

• Provide remediation consultation

• Provide solution training to clients for all supported platforms / components (Qualys, DDI, Tenable)

• Understand latest threats and vulnerabilities affecting clients

• Assist clients with API integrations

• Strong understanding of security principles

• Strong hands-on cross platform technical skills across multiple platforms (Windows, Linux a must).

• Experience in understanding and assessing business processes, analyzing and assessing business process controls, identifying risks and linking business risks to the relevant IT application controls and audit procedures.

• Experience with security monitoring controls, methodology, and event remediation/resolution.

• Proven experience and working knowledge of Identity and Access Management standard methodologies

• Experience in agile methodology to deliver results

• Scripting experience (Python, Bash)

• Systems Management experience

• Experienced with packet capture review and diagnosis

• Compliance experience (PCI, HIPAA, etc)

• Knowledge of major web server software (IIS, Apache, WebSphere, Tomcat, WebLogic)

• CISSP, ASV, CISM, CISAM

• Bilingual candidates highly desirable

• Experience with Customer Support and Development Tools (Salesforce, ServiceNow, Jira, etc.)

• Define specific hardware and software architectures for our medical devices to reduce or eliminate cyber vulnerabilities

• Alignment of division R&D Product Cybersecurity Risk Management processes with R&D Safety Risk Management processes for medical devices

• Build a metrics program that leverages assessment data, internal and external vulnerability & threat intelligence sources, supplier data, and product profiles to provide insight into future trends.

• Collaborate with product R&D teams across division to create and maintain a Secure Product Development Lifecycle process to ensure that cybersecurity requirements/controls can be embedded within the product development process

• Develop and employ an ongoing product cybersecurity communications, training and awareness program tailored to the evolving needs of the business and specific requirements of various user groups through change management

• Build and maintain executive relationships necessary for the successful execution of the division product cybersecurity program.

Job Features