Vulnerability Manager - Ontario, Canada - OnX Canada

    OnX Canada
    OnX Canada Ontario, Canada

    1 week ago

    Default job background
    Full time
    Description

    Job Description

    :

    Identifying and reporting vulnerable systems on customers networks to support the patching and vulnerability operations, coordinating remediation.

  • Scan, identify, and coordinate the remediation of vulnerabilities within the customer environment
  • Monitor and maintain scanning infrastructure used to perform vulnerability scans
  • Work with system architects to ensure customer systems access is functioning so that scans of the customer environment can be performed
  • Perform cyclical (usually monthly) vulnerability scans of customer environments
  • Develop standard reports, work with patching operations to mesh data from the output of patching workloads to produce risk scoring, vulnerability priorities and patching priorities
  • Produce both pre patching and post patching scan reports
  • Formulate executive summary reporting
  • Track metrics to assist the customer in managing risk posture
  • Coordinate with customer contacts to formulate a plan of attack based on agreed priorities
  • Establish procedures and playbooks to obtain and disseminate vulnerability information to stakeholders
  • Establish procedures and playbooks to configure, deploy, maintain, and retire vulnerability scanning and endpoint security tooling
  • Potentially act as a Program manager with the customer over the patching and vulnerability management scope
  • Cultivate and maintain relationships with customer stakeholders
  • Participate in expansion of new opportunities with new or existing customers
  • Internally and externally focused to ensure timely remediations
  • Four years of college resulting in a bachelor's degree or equivalent
  • Industry specific certification from SANS/GIAC, ISC2, etc or similar a plus. Certifications included advanced GIAC/SANS certifications -- GCIH, GCIA, GCFE, GCFA, GREM, GIAC, GSEC, GWAPT -- CISSP, CCSP, SSCP, Security+.
  • 7-10 Years
  • 5 - 7 years Information Technology/Information Security experience
  • Strong background in information security, vulnerability management and endpoint security
  • Strong analytical skills
  • Exceptional Excel skills
  • Power BI Skills is a plus
  • Knowledge of a scripting language (Python, Perl, etc.)
  • Experience with the functions and administration of Endpoint Security, Vulnerability Management, and endpoint privilege management software
  • Experience with industry standards such as NIST, PCI, CIS, MITRE ATT&CK etc.
  • Experience working in a team-oriented, collaborative environment
  • Experience managing customer relationships

    • This position does not have employee direct reports but does serve as a "lead" role for others doing similar work.

    Remote