BRIDGES Consulting, Inc.

Vulnerability Management Engineer

4 weeks ago(11/21/2017 9:09 AM)
Requisition ID
2017-2468
Job Type
Consultant
US-MD-Annapolis Junction
Division
Corporate Services
Exempt/Non-Exempt
Exempt

About Bridges Consulting, Inc.

With the passion to make a difference, BRIDGES solves national security and commercial vulnerability challenges using cyber intelligence. In today’s cyber battleground, our team of elite experts makes BRIDGES an industry pacesetter and agile innovator that delivers success as a trusted partner.

 

We are hiring top talent for a rapid growth trajectory while maintaining our culture and values of commitment, integrity, respect, and courage. Within the BRIDGES family, our employees are our first priority. We offer best-in-class compensation and benefits, a collaborative atmosphere, and opportunities to develop and advance; ... and we have fun!

Position Description

Day in the life: running scans, analyzing scans, filtering and prioritization of vulnerabilities discovered in the environment, working with service owners to perform remediation’s on vulnerabilities and mitigations, works with server and application teams on prioritization on what needs to be fixed within certain timelines.

  • Some experience with patching tools would be a plus (Tivoli, SCCM)
  • Tenable security center experience is preferred, but manager believes any vulnerability scanner tool experience is fine
  • Should understand reporting via custom reports or exports into excel and build intelligent reporting around that
  • This person will focus on COTS applications as opposed to proprietary
  • Information Security or Technology related experience in vulnerability scanning tools and processes. Rapid7 Nexpose, Nessus, and Tenable Security Center experience.
  • Experience with penetration testing techniques, tools, and validation of results.
  • High level of expertise in information security concepts, information security policies and system architecture concepts and have experience in process definition, workflow design, and process mapping.
  • In depth understanding in multiple areas of Information Security such as networking (TCP/IP, OSI model, network protocols), operating system fundamentals (Windows, UNIX, mainframe), security technologies (firewalls, switches, routers, IPSEC, IDS/IPS, etc.).
  • Knowledge of performing vulnerability assessments, privacy assessments, incident response, security policy creation, enterprise security strategies, and governance.
  • Experience working with Information Security tools in a large, complex, multi-platform environment - Has experience in large, complex environment.

Assignment will go at least 6 months, may extend, may also convert to full-time

Resource should be in Owings Mills office at least 2-3 days per week, the rest of the work can be done remotely

5-7 years of security experience is ideal, 2-3 should be specific to vulnerability management

2-3 years with any of the below tools will suffice

 

- Tenable security center

- Nessus

- Rapid7

 

 

EOE AA M/F/D/V to EOE AA M/F/Vet/Disability

 

EEO is the Law poster

Qualifications

 

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed