Security Vulnerability Management Specialist (Hybrid / Full-time)

Our client is looking for Security Vulnerability Management Specialist (Hybrid / Full-time) to join their Corporate Information Security Team in Pittsburgh, PA.

Our client is a Fortune 500 company, a leading provider of aluminum sheet, plate and extrusions, as well as innovative architectural products, that advance the automotive, aerospace, commercial transportation, industrial and building and construction markets.

JOB DESCRIPTION:

• Scheduled work-from-home days.
• Must be able to work onsite 3 days a week.

Primary Responsibilities

• Partner with security architects and key stakeholders to identify and reduce risks introduced by software and configuration vulnerabilities.
• Identify, report and track system vulnerabilities of company IT assets ensuring the integrity of the environment.
• Perform risk analysis and prioritization of findings identified by vulnerability and attack surface management solutions.
• Oversee vulnerability remediation targets to ensure fixes are applied timely, in accordance with the company's standards.
• Collaborate with partners to anticipate potential non-compliance with remediation timelines, and escalate non-compliance to appropriate individuals, as necessary.
• Operate with the company's IS standards and conventions and applicable the company's BU/RU IT Standards

Key Objectives:

• Lead the company's vulnerability and attack surface management track.
• Manage and administer the company's enterprise vulnerability assessment technology platforms.
• Design and execute a master scanning schedule for the company's assets, globally.
• Inform business stakeholders on vulnerability risk via the company's enterprise data visualization platform.

Requirements

Basic Qualifications

• Working and practical knowledge of security tools, techniques, countermeasures and trends in application, network, system threats and vulnerabilities.
• Bachelor’s degree from an accredited institution.
• Minimum five (5) years of experience in enterprise IT applications, infrastructure, security, or other related fields.

Preferred Qualifications

• Experience with leading vulnerability scanning tools (Rapid7, Tenable, InsightVM, etc.)
• Direct hands-on experience or strong working knowledge of vulnerability scanners and reviewing vulnerabilities.
• Experience with leading data visualization platforms (Tableau, PowerBI, etc.)
• Active security certification (ISACA, ISC2, CompTIA etc.), is a plus.
• Master’s degree from an accredited institution.

Employees must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire (Visa sponsorship is not available for this position).

This position is subject to the International Traffic in Arms Regulations (ITAR) which requires U.S. person status. ITAR defines U.S> person as a U.S> citizen, U.S> Permanent Resident (i.e., ‘Green Card Holder), Political Asylee, or Refugee.

Benefits

Competative salary.