Vulnerability Management Engineer
Sophos
full-time
Posted on:
Location Type: Remote
Location: Romania
Visit company websiteExplore more
About the role
- Responsible for understanding, reviewing, and interpreting assessment and scanning results, reducing false positive findings and acting as a trusted security advisor to the customer
- Learn and adapt to customer’s culture, security strategies, security goals, security objectives, and security capabilities
- Maintain knowledge of outstanding vulnerability management issues as it pertains to the Customer Vulnerability Management Service and communicate updates as appropriate
- Collaborate with program management and Customer teams to create both tactical and strategic plans (establish and communicate a clear vision and ensure short term issues do not overtake strategic goals)
- Serve as an escalation point for all Customer technical issues requiring support within the Vulnerability Management offering
- Providing Vulnerability Assessment Scanning and guidance, False Positive Validation, Attestation Signing, Compliance Scanning and policy creation using the QualysGuard Policy Compliance Suite and Web Application Scanning using the Qualys WAS Suite
Requirements
- 3+ years of experience in a technical security support role
- Strong network engineering experience with Linux/Unix, Windows, and network infrastructure administration
- Experience with Vulnerability Management platforms such as QualysGuard, Nessus, Rapid 7
- Provide guidance and support for Vulnerability remediation scenarios
- Strong technical, analytical, and interpersonal skills; ability to interact with stakeholders like customer support or executive leadership teams, vendors, etc.
- One or more of the following certifications: CISSP, GPEN, GCIH, CEH are desired but not mandatory
Benefits
- Sophos operates a remote-first working model, making remote work the primary option for most employees.
- Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit
- Employee-led diversity and inclusion networks that build community and provide education and advocacy
- Annual charity and fundraising initiatives and volunteer days for employees to support local communities
- Global employee sustainability initiatives to reduce our environmental footprint
- Global fitness and trivia competitions to keep our bodies and minds sharp
- Global wellbeing days for employees to relax and recharge
- Monthly wellbeing webinars and training to support employee health and wellbeing
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
vulnerability managementnetwork engineeringLinuxUnixWindowsQualysGuardNessusRapid 7vulnerability assessment scanningcompliance scanning
Soft Skills
analytical skillsinterpersonal skillscommunication skillscollaborationproblem-solvingstakeholder interactionstrategic planningtactical planningcustomer supporttechnical support
Certifications
CISSPGPENGCIHCEH