VonConsulting.ro - 10 ani de Recrutare si Oursourcing IT
  • Startseite
  • Über uns
  • Dienstleistungenarrow_drop_down
    • Rekrutierung
    • Outsourcing
    • Zeitarbeit
    • Beratung
  • Berufschancen
  • Kontaktiere uns
  • arrow_drop_down
  • ro
  • en
  • de

Security – Vulnerability Analyst

ID: von_53286101
Full time
Bucharest
Entry, Middle
01-03-2021
Responsible for identifying and analysing the security vulnerabilities identified by the vulnerability scanners used across the organisation as well as for managing technical configurations changes on the security tools in order to ensure compliance with the policies. Close interaction and alignment with Local Market vulnerability management and application management groups is necessary to successfully act on the role.
Verantwortlichkeiten
  • Use automated tools (e.g. Tripwire, Nessus) to pinpoint vulnerabilities and reduce time- consuming tasks
  • Use available manual testing techniques and methods to gain a better understanding of the environment and reduce false negatives
  • Track managed vulnerabilities over time for metrics purposes and present comprehensive Vulnerability Assessments
  • Maintain a vulnerability database until vulnerability features are developed in security tool
  • Analyse the discovered security vulnerabilities
  • Be responsible of the Vulnerability DB that tracks all the open, closed, managed, not managed vulnerabilities until vulnerability features are developed in security tool
  • Perform risk analysis by using proprietary methodologies for risk calculation.
  • Clearly document and define risks and potential impacts along with the statistical probability of such an event and identify systems affected by the defined risk
  • Maintain procedures to implement and improve vulnerability analysis
  • Actively support increasing the perimeter scanning coverage by analysing and comparing scanning result against baselines
  • Promote and support on improvement initiatives within the organization
Anforderung
  • Relevant experience with vulnerability scanning/testing tools (e.g. Qualys, Nessus, Tripwire or others)
  • System administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems
  • Computer networking concepts and protocols, and network security methodologies
  • Knowledge of Wintel/UNIX/Linux O.S. environment
  • Experience on using Remedy – or any ticketing tool
  • Host/network access control mechanisms (e.g., access control list, capabilities lists)

Nice to have:

  • Experience with security standards and audits(e.g. ISO27001, SOX, PCI-DSS)
  • Cryptography and cryptographic key management concepts
  • Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
  • Vulnerability assessment techniques
Bewerben Sie sich mit Lebenslauf
close
  • Max. file size: 50 MB.
  • Hidden
  • This field is for validation purposes and should be left unchanged.
  • Ähnliche Jobs
    • Innovation Database Engineer – Junior /…
    • Data Loss Prevention Junior Analyst –…
    • Data Loss Prevention Junior Analyst
    • Software Engineer for Automotive Security Firmware
    • Security Research Manager
  • Kürzlich hinzugefügte Jobs
    • Regional People Team Administrator
    • .NET Software Engineer
    • FULL STACK DEVELOPER
    • Customer Success Executive
    • Junior Business Intelligence Analyst
  • Aktuelle Artikel
    • 2021 tech acquisitions to watch
    • Brain activity while coding, different from maths
    • Python is 30! Why it is still preferred worldwide
    • MISIM, the AI automated coding
    • Graph databases can design flexible hierarchies and be used in cloud deployment
© 2022 - VonConsulting.
  • Geschäftsbedingungen
  • Privatleben
Manage Cookie Preferences
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage vendors Read more about these purposes
Preferences
{title} {title} {title}