Senior Vulnerability Management Specialist

CMS-TEM Senior – VM - Qualys

As a Senior with EY’s Global Delivery Services (GDS) Cybersecurity Team, you will contribute technically to client engagements and internal initiatives. An important part of your role will be to actively establish, maintain and strengthen client’s relationships. You will also identify potential business opportunities for EY within existing engagements, report and escalate any engagement related issues to senior team members as appropriate.

The opportunity

In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help senior members with business development activities.

Your key responsibilities

• Must have thorough understanding about the Vulnerability Management and Exception & Exemption process on cloud hosted systems, databases, web services and other widely deployed infrastructure components
• Must be able to provide recommendations for remediation of vulnerable protocols ( e.g. NTLMv1, SMBv1, Basic Authentication etc.) and Weak ciphers ( e.g. RC4, RC2 etc.) on Windows, Linux and Solaris platforms.
• Expert knowledge in validating and triaging vulnerabilities
• Patch Windows systems within on prem and cloud environments· Provide reports on vulnerabilities, exploits and patches
• Create risk narratives that explain threat exposure to the enterprise
• Able to identify and exploit security vulnerabilities in a wide array of systems in a variety of situations
• Extensive experience with vulnerability scanning technologies, e.g. Qualys, Nessus, Insight VM
• Conduct vulnerability scans, analyse reports, and validate potential findings
• Strong Automation Experience with the PowerShell/other scripting or programming/configuration management tools (Chef, Ansible, Puppet, Python, Ruby)
• Must have knowledge about automating solution for vulnerability (NTLMv1, SMBv1, weak ciphers etc.) remediation
• Experience implementing, administering and creating custom dashboards for performance monitoring/Metrics
• Excellent troubleshooting skills related to OS, Network and other performance issues
• Stays current with new and existing vulnerabilities and related news.
• Ability to work both independently as well as lead a team of experienced staff to manage the vulnerability management program.

Skills and attributes for success

• Hands on operational experience with vulnerability management tools (e.g. Qualys, Tenable, Ansible) including the ability to deploy, configure, and run these tools.
• Must have thorough understanding of Patch Management end-to-end lifecycle.
• Must have worked on either one of the solutions (SSCM, Manage Engine, Qualys PM module)
• Familiarized with the latest security vulnerabilities and exploit, understanding of web-based application vulnerabilities (OWASP Top 10), cloud security and architecture
• Strong understanding of network and server security including CIS, SSL/TLS, IPSEC, etc.
• Experience with scripting / programming skills (e.g., Python, PowerShell)
• Hands on experience of tools like network monitor, fiddler, performance monitor, process monitor
• Understanding of network security and popular attacks vectors.
• Fluency in English, other language skills are considered an asset

To qualify for the role, you must have

Graduates / BE / BTech / MSc / MTech / MBA in the fields of Computer Science, Information Systems, Engineering, Business or related major with minimum 6 years of work experience especially in vulnerability assessment and remediation.

Knowledge of Windows, Linux, UNIX, Solaris any other major operating systems.