WHAT IS THE JOB LIKE?
Responsible for the reviewing vulnerabilities' data from multiple sources (vulnerability scanning, penetration testing, etc.) across multiple technologies and a changing environment including infrastructure and applications to determine risk rating of vulnerabilities to business assets.
Responsible in improving and automating existing vulnerability management lifecycle. Including but not limited, data ingestion & normalization, compliance metrics and detections on assets.
Partner with tools and technology teams to troubleshoot, develop, select, implement and automate appropriate security solutions to keep system data protected from internal and external threats.
Provide support and resolution for scanning and vulnerability remediation reporting issues.
Work with the Business Units to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of cost-effective security controls to mitigate identified risks.
Stay current with vulnerability information across all the products in the Conduent environment.
Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes)
Provides analysis and validation post remediation, opportunities for improvements and out of the box thinking for optimizations and solving roadblocks.
Perform reoccurring and on demand scanning activities of both corporate and cloud environments utilizing enterprise platform.
Develop strategies to identify, manage, and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders.
Coordinate with Managed Security Service partner in improving the overall scanning process.
WHO ARE YOU?
Bachelor's degree or equivalent experience in the field of Information Systems, Computer Science, Information Technology or similar field.
Minimum of 5 years of related experience in vulnerability management and compliance monitoring.
Experience in leading cybersecurity vulnerability management and analysis.
Understanding of a variety of technical concepts with focus on cloud computing, automation, networking, systems administration, application development, and information security best practices
Experience in vulnerability scanning, SEIM, penetration testing, network admission control, advanced malware protection and/or mobile device management.
Experience in design, implementation and operations experience with security technologies that includes, but not limited to: IDS/IPS Firewalls Log Analysis and SIEM Network Behavior Analysis tools.
Experience in IT controls monitoring for regulatory and compliance requirements like CIS, SOX, PCI compliance - PCI DSS, NIST, ISO 27001 & ISO 27002 is a plus.
IT Security Certifications such as Certified Vulnerability Assessor (CVA), Certified Ethical Hacker (CEH) is a plus.
Extensive knowledge and experience with diverse IT architectures and enterprise IT data centers, large scale transaction processing environments, external hosted services and cloud computing environments.
JG Summit Holdings
Responsible for the reviewing vulnerabilities' data from multiple sources (vulnerability scanning, penetration testing, etc.) across multiple technologies and a changing environment including infrastructure and applications to determine risk rating of vulnerabilities to business assets.
Responsible in improving and automating existing vulnerability management lifecycle. Including but not limited, data ingestion & normalization, compliance metrics and detections on assets.
Partner with tools and technology teams to troubleshoot, develop, select, implement and automate appropriate security solutions to keep system data protected from internal and external threats.
Provide support and resolution for scanning and vulnerability remediation reporting issues.
Work with the Business Units to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of cost-effective security controls to mitigate identified risks.
Stay current with vulnerability information across all the products in the Conduent environment.
Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes)
Provides analysis and validation post remediation, opportunities for improvements and out of the box thinking for optimizations and solving roadblocks.
Perform reoccurring and on demand scanning activities of both corporate and cloud environments utilizing enterprise platform.
Develop strategies to identify, manage, and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders.
Coordinate with Managed Security Service partner in improving the overall scanning process.
WHO ARE YOU?
Bachelor's degree or equivalent experience in the field of Information Systems, Computer Science, Information Technology or similar field.
Minimum of 5 years of related experience in vulnerability management and compliance monitoring.
Experience in leading cybersecurity vulnerability management and analysis.
Understanding of a variety of technical concepts with focus on cloud computing, automation, networking, systems administration, application development, and information security best practices
Experience in vulnerability scanning, SEIM, penetration testing, network admission control, advanced malware protection and/or mobile device management.
Experience in design, implementation and operations experience with security technologies that includes, but not limited to: IDS/IPS Firewalls Log Analysis and SIEM Network Behavior Analysis tools.
Experience in IT controls monitoring for regulatory and compliance requirements like CIS, SOX, PCI compliance - PCI DSS, NIST, ISO 27001 & ISO 27002 is a plus.
IT Security Certifications such as Certified Vulnerability Assessor (CVA), Certified Ethical Hacker (CEH) is a plus.
Extensive knowledge and experience with diverse IT architectures and enterprise IT data centers, large scale transaction processing environments, external hosted services and cloud computing environments.
JG Summit Holdings
Other Info
Ortigas Center, Pasig City
Permanent
Full-time
Permanent
Full-time
Submit profile
JG Summit Holdings
About the company
About the company