Dell
Security Systems Advisor
Washington D.C. Metro Area, US - Computer Hardware, Computer Software, Information Technology and Services
Job Description
The Security Systems Advisor will work closely with the Dell Information Security Manager to manage all aspects of the vulnerability management program; including: schedule scan jobs, analyze vulnerability reports, identify false positives, perform research on vulnerabilities, and provide results of findings and remediation/mitigation recommendations. This position will also be responsible for ensuring systems comply with approved security standards.
The successful candidate will be expected to have a solid understanding of current infrastructure, operating system and application vulnerabilities across a wide variety of systems, and will also be expected to maintain this understanding as new threats emerge and vulnerabilities are identified.
Required Skills
-Perform tasks as directed by the Dell Information Security Manager
-Review scan findings, and provide technical and business recommendations for addressing vulnerabilities
-Enter findings and remediation strategies into standard templates for entry into the clients vulnerability management systems
-Develop vulnerability metrics
-Create SCAP templates and perform compliance scanning
-Submit quest tickets and work with cross-functional, leveraged, and distributed workforce environment to remediate vulnerabilities
-Collaborate with SOC to schedule ad hoc vulnerability scans
-Periodically evaluate the list of scan targets for accuracy and effectiveness
-Create processes to improve management and monitoring of the clients vulnerability management program
-Attend regular meetings to discuss new initiatives and ongoing tasks
-Create and maintain documentation related to the overall vulnerability management program
Desired Skills
-Ability to obtain Public Trust Clearance
-A minimum of two years experience working with a vulnerability management tool such as McAfee Vulnerability Manager (formerly Foundstone), Qualys, Nessus, etc.
-Solid technical understanding across a variety of infrastructure components and servers such as Linux/Unix, Windows and network infrastructure components such as routers, switches and firewalls
-Experience using Excel and PowerPoint to create management reports
-Knowledge and understanding of FISMA requirements and NIST special publications
-Solid teamwork and interpersonal skills, with the ability to communicate and work with customers, teams, and management at all levels and thrive in a cross-functional, leveraged, and distributed workforce environment
-Investigate, evaluate, and respond to reported information security incidents
-Must be able to work in both a team and standalone environment
-Familiarity and understanding of Federal environment
-Experience working in an IT environment where security is an imperative
-One or more security certifications, such as CISM, CISSP, CISA, and SANS
-Complete periodic training
-Ability to travel when needed
Education
Undergraduate Degree
Experience
Typically requires at least 8 years relevant experience without a Degree; 3+ years relevant experience with Undergraduate Degree; 2+ years relevant experience with Graduate Degree
Requirements
Hazards
No salary provided
Posted July 31, 2014 at 05:05AM from LinkedIn http://ift.tt/1ABSsWB
via IFTTT
No comments:
Post a Comment