Cybersecurity Vulnerability Analyst

The Nielsen Legal Team supports the company globally, protecting Nielsen’s business, products, intellectual property and reputation. The team places a focus on developing excellence and agility as we minimize risk and move the business forward. The team comprises attorneys, paralegals and legal assistants. Whether we’re solving a problem or averting a crisis, we are focused on creating the best environment possible to advance Nielsen’s reputation, preserve business opportunities, and help business to flourish. 
ABOUT THIS JOB As a leader in global measurement and data analytics, Nielsen is committed to protecting the privacy of our panelists, associates, and the public. The Cybersecurity Analyst will be a member of the global Security department reporting into the Security Performance Management team and is responsible for the identification, assessment, measurement, monitoring, and reporting of vulnerabilities and compliance issues. Vulnerability management’s main objective is improving the identification and protection of Nielsen’s information assets.  In this role you will get to work with industry tools and technologies needed to protect the organization from the latest cyber attacks. You will be responsible for collecting and analyzing details pertaining to vulnerability and compliance assessments on new and current systems within the environment. Additionally, the analyst will be responsible for documenting, coordinating & tracking remediation to specified target dates with the application owners, using established processes and escalating issues as appropriate. We are looking for a cybersecurity professional that will take charge, track and achieve established metrics, be innovative, collaborative, and drive efficiency with vulnerability response.

RESPONSIBILITIES

• Drive the vulnerability remediation process working closely with diverse technology teams.
• Measure implementation, effectiveness & impact of technical support teams compliance to security control requirements and report status of compliance to leadership.
• Develop, manage and maintain databases, scripts, and workflows required to accurately report metrics of Nielsen’s vulnerability/threat landscape.
• Provide metrics and reports on progress and risk trends
• Produce metrics and reports to monitor remediation progress, quantify solution effectiveness and synthesize threat trends
• Conduct internal vulnerability scans and compliance reviews.
• Document and maintain process flow / standard operating procedures (SOPs) to ensure consistent, timely response to vulnerabilities and potential threats

Skills you will need

• Demonstrated experience in the discipline of vulnerability scanning, prioritization, asset-based remediation management, and reporting.
• The ability to develop, maintain, and continually improve the vulnerability management platform, processes, and technical assessment support.
• Ability to collaborate extensively with development and infrastructure teams to help them identify their vulnerabilities and assist them to develop remediation and mitigation strategies.

QUALIFICATIONS

• Proven years of direct Information Security experience focused in Vulnerability Management, Security Operations and/or GRC
• Experience with vulnerability scanning and monitoring in cloud environments
• Experience with Database and other Query languages such as mySQL and MSSQL
• Experience providing and validating security requirements related to information system design, implementation and business processes
• Experience working and developing in either python, ruby, or other programming languages a plus
• Experience with ServiceNow Security Operations, Vulnerability Response, and GRC modules a plus
• Having one or more security or audit certifications such as SANS/GIAC, CISSP, CISA, or CISM a plus
• Knowledge of common information security standards, such as: ISO 27001/27002, NIST, ITIL, COBIT.
• Basic Understanding of System Development Life Cycle methodology

Nielsen is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class.
#LI-Hybrid#LI-WM1