Vulnerability Management Engineer

Herndon, Virginia, US

Full Time
IBM logo
IBM
Apply now Apply later

Posted 2 weeks ago


Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.


Your Role and Responsibilities
Location: Herndon, VA, Enjoy challenges? Big challenges? Come work for the office of the IBM CISO organization and help meet the global challenges of keeping one of the largest companies in the world secure. We’re looking for enthusiastic and innovative team members to join us. Position Summary: This position is in the existing vulnerability management squad. The ideal candidate will possess a strong technical and security background with an emphasis on supporting enterprise security applications and services; mainly identifying, managing and reducing vulnerabilities. He / She will work within a fast­ paced, Agile environment collaborating with cybersecurity architects and technology teams across IBM CISO and business units to implement and support next generation security solutions. Essential Job Duties:
  • Expert-level knowledge of leading vulnerability scanning tools (Nessus, Qualys, Nexpose, Netsparker, Burp, etc.)
  • Utilizing a strong understanding of TCP / IPv4 addressing, ports, protocols, services, DNS, DHCP, NAT, PAT, subnetting and CIDR.
  • Utilizing knowledge of various network devices including routers, switches, firewalls, IDS / IPS, load balancers, proxy servers and network taps.
  • Vulnerability Identification (including awareness of current vulnerabilities and patches)
  • Manipulating data within files (XML and CSV for example) and between files utilizing knowledge of scripting using Python, Perl and other.
  • Risk bases analysis and prioritization by leveraging AI/ML where applicable.
  • Driving resolution, patching including developing best practices
  • In-depth experience supporting enterprise vulnerability management across IaaS, PaaS, and/or SaaS.
  • Excellent overall understanding of cybersecurity vulnerabilities and threats to include identification and patching.
  • Engineer, test, and deploy custom solutions for reducing vulnerabilities through automation across endpoint estate.
  • Expert knowledge of system, application, and database hardening techniques and practices.
  • Experience conducting all-source analysis, managing and tracking analytic production
  • Recommend and support remediation/resolution activities associated with any discovered vulnerability in accordance with IBM Standards.
  • Conduct vulnerability scans and assessments at the network, operating system, database, and application levels. Be able to create custom profiles in the vulnerability scanning tools and run scans on-demand basis or be able to schedule them.
  • Perform vulnerability scanning and analysis to eliminate false positives and to aggregate findings by specific best practice criteria.
  • Strong understanding of vulnerability management and security testing practices and methodologies.
  • Manage and track hands-on resolution efforts with operational support team.
  • Developing unique solutions to challenging technical problems.
  • Oversees, evaluates and matures the intelligence of data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within the IBM environments (on-premise and cloud) for the purposes of mitigating threats. Ensure vulnerabilities are identified as early as possible and mitigated.
  • Perform other duties as necessary or as required.



Required Technical and Professional Expertise
  • 5+ years professional work experience with technical aspects of network, servers and web vulnerability management solutions
  • At least 5 years’ experience in perform vulnerability assessments, analysis, and reporting
  • 5+ years of (hands-on) experience in using vulnerability scanning tools (Nessus, Qualys, Nexpose, Netsparker, Burp, etc.)
  • Experience in Windows and Linux environments
  • Ability to develop and maintain positive relationships with other technology teams/stakeholders
  • Good understanding of the OWASP Top 10. Familiarity with vulnerabilities in 3rd party libraries and remediation
  • Deep understanding of network and web vulnerability scanning application outputs
  • Expertise in network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts
  • Bachelor’s degree in Computer Science, Engineering, or equivalent experience
  • Knowledge of Scripting and/or programming skills (e.g., Python, PowerShell, Java, JS, etc.)



Preferred Technical and Professional Expertise
  • 5+ years professional work experience with technical aspects of network, servers and web vulnerability management solutions
  • At least 5 years’ experience in perform vulnerability assessments, analysis, and reporting
  • 5+ years of (hands-on) experience in using vulnerability scanning tools (Nessus, Qualys, Nexpose, Netsparker, Burp, etc.)
  • Experience in Windows and Linux environments
  • Ability to develop and maintain positive relationships with other technology teams/stakeholders
  • Good understanding of the OWASP Top 10. Familiarity with vulnerabilities in 3rd party libraries and remediation
  • Deep understanding of network and web vulnerability scanning application outputs
  • Expertise in network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts
  • Bachelor’s degree in Computer Science, Engineering, or equivalent experience
  • Knowledge of Scripting and/or programming skills (e.g., Python, PowerShell, Java, JS, etc.)



About Business Unit
IBM Corporate Headquarters (CHQ) team represents a variety of functions such as marketing, finance, legal, operations, HR, and more, all working together to solve some of the world's most complex problems, help our clients achieve success and build collaborative work environments for IBMers.


Your Life @ IBM
What matters to you when you’re looking for your next career challenge?

Maybe you want to get involved in work that really changes the world? What about somewhere with incredible and diverse career and development opportunities – where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust – where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.

Impact. Inclusion. Infinite Experiences. Do your best work ever.


About IBM
IBM’s greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.


Location Statement
IBM will not be providing visa sponsorship for this position now or in the future.  Therefore, in order to be considered for this position, you must have the ability to work without a need for current or future visa sponsorship.


Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.





Job tags: AI Automation Cyber defense DNS Finance IaaS IDS IPS Java Linux PaaS Perl Python Qualys SaaS Vulnerabilities Vulnerability management Windows