Job Description:
The Role
The ECS Cyber Remediation Team is seeking an experienced cybersecurity analyst with operational experience in container and cloud security, infrastructure security and vulnerability remediation in a diverse computing environment. The successful candidate must be able to review risk assessment reports, understand the risk of any findings identified in the reports and drive the business unit towards a planned remediation date within a timely manner.
Primary responsibilities include:
Engage business unit and Information Security Office (ISO) contacts after the identification of a risk or vulnerability, assist both parties by explaining the risks of any issues identified, provide the vital data, and drive towards complete mitigation and/or closure of the risk findings within a timely manner.
Document and maintain vulnerability remediation team procedures, documents, and plays.
Supervise multiple remediation initiatives throughout the vulnerability management lifecycle, understand how risk impacts the organization and work with business units and Information Security Officers to reduce risk across the enterprise.
The Expertise and Skills You Bring
Knowledge AWS, Azure and other cloud service providers.
Knowledge of Containerization technologies
Knowledge of Container Management technologies
Strong knowledge of network scanner tools and operations such as Qualys, Tenable and Rapid 7
3-5 years operational experience assessing, reviewing, and remediating cloud and infrastructure vulnerabilities, CVE’s, and risks.
Experience with and understanding of CVE’s and CVSS scores
Knowledge of third-party software vulnerabilities, security threat landscape, especially network and server threats
Knowledge of cyber security threats and risks, vendor computing environments, basic systems, and network technologies.
Knowledge of compensating controls and mitigating factors.
Knowledge of Information Security frameworks, guidelines, and standard methodologies.
Knowledge of the Windows and / or Linux operating systems
Knowledge and understanding of Cybersecurity controls and logging and monitoring tools.
Knowledge of metrics and reporting with the use of data visualization tools such as Tableau and Power BI
Demonstrable data analytics skills
Proven Project Leadership skills with an ability to work on multiple projects by risk based prioritization and a results oriented approach
Ability to expertly interact with all levels of personnel
Excellent verbal and written communication skills
Strong problem solving and analytical skills
Good teammate with flexibility required for support operations
Must be a quick learner and adapt to new tools and technologies