What are the responsibilities and job description for the Security Vulnerability Team Lead position at Diversified Systems, Inc.?
Remote (Onsite when needed)
Description
DSI is searching for a Security Vulnerability Team Lead who will lead within the Information Security Office as the subject matter expert (SME) for the management and administration of the delivery center's vulnerability management program.
Responsibilities
Subject matter expert (SME) for the management and administration of the delivery center's vulnerability management program.
Conduct regular vulnerability assessments and tests to identify security weaknesses in systems and applications.
Collaborate with compliance teams to ensure adherence to regulatory requirements and industry standards related to security vulnerabilities.
Coordinate with IT and development teams to prioritize vulnerabilities and ensure timely remediation actions are taken.
Stay informed about the latest security trends, threats, and best practices to continuously improve the vulnerability management process.
Prepare and present vulnerability management reports to senior management, highlighting key findings and recommendations.
Provide training and awareness programs for staff on security vulnerabilities and best practices for risk mitigation.
Facilitate incident response activities related to vulnerabilities and coordinate with external partners as necessary.
Demonstrates good judgement and problem-solving skills. Reacts and adapts to changing circumstances rapidly.
Leverages Commonwealth incident tracking and ticketing systems to receive tasks from other units, delegate tasks to other units, prioritize daily tasks, document actions taken, and the final resolution for tasks completed.
Provides on call and/or emergency support, including after-hours as needed.
Adheres to established service management processes and procedures.
Performs all other related duties as assigned.
Requirements
Exceptional written and verbal communication skills required.
5 years of experience is required for the position as well as each of the technical skillsets.
Extensive experience with Tenable Security Center a must. Certifications are a plus.
Familiarity with DAST tools such as Rapid 7 AppSpider.
Technically proficient and experienced with Windows and Linux operating systems and system hardening.
Knowledge of regulatory compliance standards relevant to cybersecurity.
Experience with risk assessment methodologies and frameworks (e.g., NIST, FAIR)
Professional oral and written communication skills.
Strong understanding of network protocols and technologies (e.g., OSI Model, TCP/IP, firewalls, intrusion detection systems).
Excellent soft skills such as listening, presenting, and negotiating.
Must pass required Pennsylvania State Police background check.
Cannot have any felony offenses.
Ability to work remotely/and locally when required.
About Diversified Systems
Founded in 1990, Diversified Systems is an award-winning Technology Services corporation providing all levels of IT project consulting services nationwide. DSI is headquartered in Columbus, Ohio with regional offices in the American Midwest and East Coast. We offer our consultants a number of flexible and competitive compensation benefit packages.
Diversified Systems is committed to the principles of equal employment. We are committed to complying with all federal, state, and local laws providing equal employment opportunities, and all other employment laws and regulations.
Diversity, Equity and Inclusion
DSI values authenticity and is committed to making sure our employees and partners are valued and respected. At DSI, we believe building a diverse culture is important because we know when people work together, we can achieve better results as a team. DSI realizes that everyone comes from various backgrounds. We celebrate these differences because our employees are our greatest asset as we strive to best meet the needs of those we serve. As part of our ongoing efforts, DSI is focused on advancing equality, diversity, and inclusion by setting high standards to continually evolve our culture. This includes but is not limited to recruiting, community involvement, client delivery, and career development.
Description
DSI is searching for a Security Vulnerability Team Lead who will lead within the Information Security Office as the subject matter expert (SME) for the management and administration of the delivery center's vulnerability management program.
Responsibilities
Subject matter expert (SME) for the management and administration of the delivery center's vulnerability management program.
Conduct regular vulnerability assessments and tests to identify security weaknesses in systems and applications.
Collaborate with compliance teams to ensure adherence to regulatory requirements and industry standards related to security vulnerabilities.
Coordinate with IT and development teams to prioritize vulnerabilities and ensure timely remediation actions are taken.
Stay informed about the latest security trends, threats, and best practices to continuously improve the vulnerability management process.
Prepare and present vulnerability management reports to senior management, highlighting key findings and recommendations.
Provide training and awareness programs for staff on security vulnerabilities and best practices for risk mitigation.
Facilitate incident response activities related to vulnerabilities and coordinate with external partners as necessary.
Demonstrates good judgement and problem-solving skills. Reacts and adapts to changing circumstances rapidly.
Leverages Commonwealth incident tracking and ticketing systems to receive tasks from other units, delegate tasks to other units, prioritize daily tasks, document actions taken, and the final resolution for tasks completed.
Provides on call and/or emergency support, including after-hours as needed.
Adheres to established service management processes and procedures.
Performs all other related duties as assigned.
Requirements
Exceptional written and verbal communication skills required.
5 years of experience is required for the position as well as each of the technical skillsets.
Extensive experience with Tenable Security Center a must. Certifications are a plus.
Familiarity with DAST tools such as Rapid 7 AppSpider.
Technically proficient and experienced with Windows and Linux operating systems and system hardening.
Knowledge of regulatory compliance standards relevant to cybersecurity.
Experience with risk assessment methodologies and frameworks (e.g., NIST, FAIR)
Professional oral and written communication skills.
Strong understanding of network protocols and technologies (e.g., OSI Model, TCP/IP, firewalls, intrusion detection systems).
Excellent soft skills such as listening, presenting, and negotiating.
Must pass required Pennsylvania State Police background check.
Cannot have any felony offenses.
Ability to work remotely/and locally when required.
About Diversified Systems
Founded in 1990, Diversified Systems is an award-winning Technology Services corporation providing all levels of IT project consulting services nationwide. DSI is headquartered in Columbus, Ohio with regional offices in the American Midwest and East Coast. We offer our consultants a number of flexible and competitive compensation benefit packages.
Diversified Systems is committed to the principles of equal employment. We are committed to complying with all federal, state, and local laws providing equal employment opportunities, and all other employment laws and regulations.
Diversity, Equity and Inclusion
DSI values authenticity and is committed to making sure our employees and partners are valued and respected. At DSI, we believe building a diverse culture is important because we know when people work together, we can achieve better results as a team. DSI realizes that everyone comes from various backgrounds. We celebrate these differences because our employees are our greatest asset as we strive to best meet the needs of those we serve. As part of our ongoing efforts, DSI is focused on advancing equality, diversity, and inclusion by setting high standards to continually evolve our culture. This includes but is not limited to recruiting, community involvement, client delivery, and career development.
