About This RoleYour main role and responsibilitiesBe an individual contributor and a great team player with a mindset to improve and support the business.Co-ordinate and manage timely remediation of security vulnerabilities across various technologies.Identify, resolve, and document any false positi
JSfirm
Vulnerability Management Analyst
Job Description:

About This Role

Your main role and responsibilities

  • Be an individual contributor and a great team player with a mindset to improve and support the business.
  • Co-ordinate and manage timely remediation of security vulnerabilities across various technologies.
  • Identify, resolve, and document any false positive findings in vulnerability assessment results.
  • Have a good hands-on knowledge with Rapid7 architecture, scan engines, collector servers, agents, query builder, goals, and projects.
  • Collaborate with application teams and business unit owners to submit risk letters to comply with the organizations IT Security and Risk Management Framework.
  • Perform weekly/monthly and ad-hoc vulnerability assessments for servers, user systems, network assets, public-facing assets and databases using Rapid7, Burp Suite, SonarSource, Qualys, or Mend.
  • Manage scan configurations, including asset grouping and appropriate authentication; update scan templates; update scan engine pool; and schedule scans and reports.
  • Manage and troubleshoot vulnerability management tools.
  • Monitor overall vulnerability scan status, engine health check, report generation and ensure successful scan completion with proper authentication.
  • Troubleshoot scans for any missing assets and assets scanned with improper authentication or authentication failure.
  • Open support case with scanning tools vendor for appropriate support.
  • Demonstrate good hands-on working experience with DAST, SAST & SCA tools.
  • Track vulnerability remediation via ticketing system and perform validation by ad hoc scans.
  • Coordinate with the core network, endpoint teams and server teams to discuss patches that are not applied for a longer time, target patch level, CVEs covered by the corresponding patches.
  • Be knowledgeable of the Common Vulnerability Scoring System (CVSS) vulnerability assessment method, operation concepts and corrective updates.
  • Have good knowledge of web application vulnerabilities, assessment tools and methodologies.
  • Have a minimum of 3 years of hands-on experience working with above said vulnerability tools and 5 to 8 years of experience in the information security domain.
  • CEH, Rapid7 Certified Administrator (Mandatory), Qualys Certification (Mandatory), Security+, ITIL or other security certifications are required.
  • Job offer is based on the positive screening & interview along with the positive background & reference check.
  • This position is only open to candidates who are physically present in Canada at the time of application and are Canadian citizens or permanent residents.
  • This job is not open to candidates on a Work Visa/Work Permit.

Position Type

Regular

CAE thanks all applicants for their interest. However, only those whose background and experience match the requirements of the role will be contacted.

Equal Opportunity Employer

CAE is an equal-opportunity employer committed to diversity, equity, and inclusion. As "One CAE," we take affirmative action to ensure equal opportunity for all applicants regardless of race, nationality, colour, religion, sex, gender identity and expression, sexual orientation, disability, neurodiversity, Veteran status, age, or other legally protected characteristics.

If you dont see yourself fully reflected in every job requirement listed in the job posting, we still encourage you to reach out and apply. At CAE, everyone is welcome to contribute to our success. If reasonable accommodation is needed to participate in the job application or interview process, please get in touch with us at rh-hrcae.com.

Company Details
CAE USA Inc.
4908 Tampa W Blvd
Tampa, Florida 33634 USA
www.cae.com/cae-usa/careers-at-cae-usa/
217 Open Jobs Available
The world’s largest training company is looking to add members to their growing U.S. Defense business. CAE develops comprehensive multi-domain training solutions to advance operational tradecraft and achieve mission advantage. Above all else, we empower...

Benefits:
-Competitive salaries -Comprehensive benefits package including 401k match -Paid time-off policy that remotes work life balance -Tuition Assistance -Wellness Incentives -Employee Discounts -Mentorship Program -Paid Military Leave -Supplemental TRICARE coverage -Health Advocacy and Support -Travel Protection -Caregiver Support Resource

Supported Manufacturers:
CAE USA locations in Tampa, Florida and Arlington, Texas represent the larger segments of CAE’s defense and security business focused on helping the U.S. military and allied forces develop and maintain the highest levels of mission readiness. Our corporate locations and training sites and centers offer co-op, part-time and full-time employment opportunities in a variety of areas. We seek out qualified college students, active duty, former active duty, government services, and DoD personnel who have an interest in Aviation, Computer Science, Machine Learning, Hardware and Electrical Engineering, Cybersecurity, Intelligence, Research and Development (R&D), Information Technology, Simulator Maintenance, Strategy & Business Development, Program Management, Finance, Procurement, Logistics, Human Resources, and Marketing & Communications.

Supported Models:
C-130J; C-130H; Hercules; C-130; KC-135; MQ-9; RQ-4; CV-22, HH-60G, UH-1N, UH-60; MH-60R; KC-46; P-8; P-3; T-6; T-34; T-6B; MV-22; HH-60G; MC-130J; GROB 120TP; C-12; F-15E; HC/MC-130; E-3; C-5; B-1; C-17; F-22; F-16; 737; Boeing 737; 737/P-8; DA-20; V-280; B-2; CH-47 and F-16
(Job and company information not to be copied, shared, scraped, or otherwise disseminated/distributed without explicit consent of JSfirm, LLC)
Job Info
Location
Saint-Laurent, Quebec, Canada
Type
Permanent
Company Details
CAE USA Inc.
4908 Tampa W Blvd
Tampa, Florida 33634 USA
www.cae.com/cae-usa/careers-at-cae-usa/
217 Open Jobs Available
The world’s largest training company is looking to add members to their growing U.S. Defense business. CAE develops comprehensive multi-domain training solutions to advance operational tradecraft and achieve mission advantage. Above all else, we empower...

Benefits:
-Competitive salaries -Comprehensive benefits package including 401k match -Paid time-off policy that remotes work life balance -Tuition Assistance -Wellness Incentives -Employee Discounts -Mentorship Program -Paid Military Leave -Supplemental TRICARE coverage -Health Advocacy and Support -Travel Protection -Caregiver Support Resource

Supported Manufacturers:
CAE USA locations in Tampa, Florida and Arlington, Texas represent the larger segments of CAE’s defense and security business focused on helping the U.S. military and allied forces develop and maintain the highest levels of mission readiness. Our corporate locations and training sites and centers offer co-op, part-time and full-time employment opportunities in a variety of areas. We seek out qualified college students, active duty, former active duty, government services, and DoD personnel who have an interest in Aviation, Computer Science, Machine Learning, Hardware and Electrical Engineering, Cybersecurity, Intelligence, Research and Development (R&D), Information Technology, Simulator Maintenance, Strategy & Business Development, Program Management, Finance, Procurement, Logistics, Human Resources, and Marketing & Communications.

Supported Models:
C-130J; C-130H; Hercules; C-130; KC-135; MQ-9; RQ-4; CV-22, HH-60G, UH-1N, UH-60; MH-60R; KC-46; P-8; P-3; T-6; T-34; T-6B; MV-22; HH-60G; MC-130J; GROB 120TP; C-12; F-15E; HC/MC-130; E-3; C-5; B-1; C-17; F-22; F-16; 737; Boeing 737; 737/P-8; DA-20; V-280; B-2; CH-47 and F-16

JSfirm, LLC

Roanoke, TX

jobs@jsfirm.com

JSfirm LLC, Privacy Policy

All rights reserved. 2001-2024 JSfirm