Our valued crown corporation client is seeking an Senior Security Analyst to run Vulnerability Assessments using Qualys & Tanium and analyze scan results to identify potential security weaknesses
1-year contract in Ottawa, ON (Hybrid - 2 days of on-site work required per month). 7.5 hours per day, Monday to Friday.
Responsibilities :
- Conduct regular vulnerability scans using automated tools
- Analyze scan results to identify potential security weaknesses
- Assist in the evaluation and prioritization of vulnerabilities based on risk
- Ensure remediations are completed on time and validate vulnerabilities that are remediated
- Maintain and grow the vulnerability management technology and tooling (Qualys, Tanium and ServiceNow)
- Work closely with senior security team members to address vulnerabilities
- Analyze security findings with the goal of risk identification
- Assist in the prioritization of vulnerabilities
- Assist with the coordination and prioritization of remedial activities working directly with IT operational support teams
- Analyzes complex asset and vulnerability data sets to provide meaningful, actionable metrics and data visualizations
- Document vulnerability analysis and / or assessment findings and rating new vulnerabilities into a central tracker (Service now VR Module)
- Support the implementation of patches and updates to address identified vulnerabilities
- Track the status of patches and ensure timely application
- Assist in the investigation of security incidents and breaches
- Participate in root cause analysis to identify underlying vulnerabilities
- Contribute to security awareness initiatives within the organization
- Maintain accurate documentation of vulnerability assessments and remediation activities
- Ensure adherence to organizational security policies and industry standards
- Participate in risk reduction initiatives through the collaboration of multiple groups in a highly matrixed enterprise environment
Must-have Skills
- 3+ years of experience with as a Security Analyst conducting Vulnerability Assessments with Common Vulnerability Scoring System (CVSS) version 3.1 ratings
- Demonstrated experience working with vulnerability management technology and tooling ( Qualys and Tanium )
- Demonstrated experience working with the Vulnerability Response (VR) module on ServiceNow
Nice-to-have Skills
- Relevant certifications (CISSP, Azure Fundamentals, Security +, CCSA, CISA, GCCC, GCED or equivalent)
3 days ago