Job Search Results for vulnerability management analyst

Linux Vulnerability Management Analyst

We are looking for a Vulnerability Management Analyst with strong Linux expertise to identify, assess, and drive remediation of security vulnerabilities across Linux-based systems. This role partners... More closely with infrastructure, security, and engineering teams to reduce risk and improve security posture.Key Responsibilities?Analyse vulnerability scan results, validate findings, and assess risk based on severity, exploitability, and business impact?Coordinate and track remediation efforts with Linux system administrators, engineering teams, and application owners?Provide remediation guidance, including patching, configuration changes, and compensating controls?Perform vulnerability trend analysis and reporting for leadership and stakeholders?Ensure timely remediation in alignment with internal security policies and regulatoryrequirements?Perform manual validation of identified vulnerabilities to minimize false positives and ensure accurate reporting.?Support compliance initiatives (e.g., CIS benchmarks as applicable)?Participate in incident response and root cause analysis related to vulnerability exploitation?Contribute to the development and improvement of vulnerability management standards, metrics, and processesWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Network Engineering Security Analyst

The Network Engineering Security Analyst will design, monitor, and maintain secure network architectures while ensuring continuous alignment with NIST cybersecurity frameworks (e.g., NIST SP 800-53)... More and SOC 2 Type II compliance requirements. You will be responsible for translating high-level compliance mandates into technical network configurations and serving as the primary liaison during security audits.Core Responsibilities:?Network Security Engineering: Design and implement robust security solutions, including next-generation firewalls (NGFW), VPNs, and Intrusion Detection/Prevention Systems (IDS/IPS).?Compliance Management: Lead the technical implementation of controls required for SOC 2 and NIST compliance, performing regular gap analyses and internal audits.?SOC Operations: Monitor real-time security alerts via SIEM platforms (e.g., Splunk, Sentinel) to detect and mitigate network-based threats.?Vulnerability & Risk Assessment: Conduct regular vulnerability scans and penetration tests to identify and remediate network weaknesses.?Incident Response: Act as a Tier 2/3 responder for network-related security incidents, conducting root cause analysis and documenting resolutions for audit trails.?Policy & Documentation: Develop and maintain Standard Operating Procedures (SOPs), network diagrams, and security policies that fulfill compliance documentation needs.Priority 1: Audit, Policy, & NIS2 Methodology (40%)?NIS2 Translation: Act as the primary architect for translating NIS2 Directive requirements into actionable internal technical standards.?Methodology Development: Author and maintain the Incident Handling Methodology, providing step-by-step procedures for the SOC to follow during a network breach.?Audit Ownership: Lead the preparation and evidence collection for SOC 2 Type II and NIST-based audits. Maintain an "Always Audit-Ready" state for all network infrastructure.?Policy Governance: Develop, review, and enforce Network Security Policies, including Zero Trust architecture principles and micro-segmentation strategies.Priority 2: Technical Configuration & Platform Delivery (40%)?Platform Requirements: Produce detailed technical requirements documentation for platform delivery teams to ensure all new infrastructure meets NIS2/SOC compliance from day one.?Hardening & Configuration: Design and implement secure configurations for routers, switches, and firewalls (e.g., Cisco IOS Hardening) to mitigate identified audit gaps.?Network Defense Implementation: Configure and manage NGFWs, WAFs, and VPN gateways, ensuring all configurations map directly back to a specific NIST SP 800-53 or SOC control.?Vulnerability Remediation: Take ownership of network-layer vulnerability scan results, coordinating with engineering teams to patch or apply compensating controls.Priority 3: SOC Operations & Incident Management (20%)?Tier 3 Escalation: Provide expert-level analysis for complex network security events identified by the SOC.?Post-Mortem Reporting: Lead technical root-cause analysis for incidents, ensuring documentation meets the strict reporting obligations required by NIS2 authorities.?Detection Engineering: Create and tune SIEM rules based on network traffic patterns to improve detection of lateral movement.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

ServiceNow SecOps Analyst

A large retail & commercial bank is looking for a ServiceNow SecOps Analysts to join their team for Vulnerability Management. The role can be fully REMOTE in the US. The bank has close to $90B in... More assets, 9K employees and more than 2M customers along the east coast. In addition to providing excellent banking experiences for their customers, the bank also very involved in the community through charitable giving and philanthropy to give back to low/moderate income and underserved communities. The client is looking to integrate Qualys into ServiceNow SecOps module. They will make all enhancements, separate component, ensure all data flows are correct into ServiceNow. After the data is in ServiceNow SecOps they will need to create workflows assigned to specific vulnerabilities for their respective remediation paths. They will hand off to another team to configure these workflows that are logic based and create dashboards. Compensation:$32/hr to $50/hr.Exact compensation may vary based on several factors, including location, skills, experience, and education.Employees in this role will enjoy a comprehensive benefits package starting on day one of employment, including options for medical, dental, and vision insurance. Eligibility to enroll in the 401(k) retirement plan begins after 90 days of employment. Additionally, employees in this role will have access to paid sick leave and other paid time off benefits as required under the applicable law of the worksite location.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Cyber Security Analyst

This is a rare opportunity to join a fast-growing team of information security experts as we transform, enhance, and expand the security program for one of the largest information technology... More providers in the world. You will join the United States Global Technology Operations (US GTO) Security Strategy and Solutions team supporting governance, risk, and compliance consulting services as well as security service delivery across one or more US-based industries. The successful candidate will have a broad knowledge of current security practices, knowledge of specific Security Tools, as well as the ability to identify and apply legal, regulatory, and industry-specific security requirements. You will help our client deploy effective security solutions and strategies. You must be able to collaborate with a variety of technical and management disciplines including infrastructure and security architecture, security operations, application development, project managers, product owners, and others.Future duties and responsibilities. Incident Response. Security Investigations. Security Engineering. GRC. Tools validation. Vulnerability Management. ReportingWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less