Vulnerability Mgmt Analyst

Software Guidance & Assistance, Inc., (SGA), is searching for a Vulnerability Mgmt Analyst for a CONTRACT assignment with one of our premier Banking Clients in Auburn Hills, MI or Frisco, TX .

Hybrid schedule 2x weekly onsite

Responsibilities :

• Responsible for vulnerability scanning, prioritizing vulnerabilities, and driving remediations while partnering with the application and infrastructure teams.
• Will be experienced working with cross-functional teams in vulnerability management and prioritization, and will have the ability to automate while using a programming language.
• Vulnerability Management Operations - 40%
  • Perform vulnerability assessments and common baseline control scans across the firm's environment and report on Key Risks Indicators (KRIs).
  • Lead security vulnerabilities and risk management activities across the firm, including identifying vulnerabilities and supporting application/system owners to manage risks/remediate vulnerabilities.
  • Establish and mature processes around vulnerability management, remediation, and reporting.
  • Lead key projects such as vulnerability prioritization to remediate critical key vulnerabilities.
  • Participate in vendor evaluations and selection for vulnerability management products, such as external attack surface management.
  • Implement and support those products on a continuous basis.
  • Stay current on vulnerability management best practices across the industry.
• Administration & Reporting - 20%
  • Develop a comprehensive set of metrics to track on enterprise risks and remediation trends and keep Management informed of them through accurate, timely, and appropriate reporting.
  • Support monthly KRI reporting through data collection, working with application and infrastructure teams to remediate vulnerabilities.
  • Create presentations based off KRI materials and keep Management informed of them.
• Technical Consulting & Communication - 25%
  • Drive technical excellence and implementation of vulnerability management best practices in collaboration with technology teams across the enterprise.
  • Provide consultation to and work closely with other functional infrastructure areas/departments on multiple initiatives to meet common organizational/business goals and objectives.
  • Collaborate with business units, application and infrastructure teams, and vendors to identify, review and evaluate solution requirements.
  • Automate existing manual processes in order to create improved processes and create faster delivery.
  • Coach and mentor more junior team members and application teams on vulnerability remediation efforts.
• Risk Management - 10%
  • Identify and communicate gaps in our vulnerability management practices.
  • Participate in Red Team exercises to identify potential vulnerabilities proactively.
  • Partner with application and infrastructure owners to provide consulting on vulnerability remediation to allow them to appropriately remediate large highly complex vulnerabilities within the SLA (service level agreement) and reduce risk for the bank.
  • Develop cyber vulnerability analysis for known vulnerabilities, as well as cyber-related metrics and reporting deliverables.

Required Skills:

• Hands-on expertise working in vulnerability management and operations and will have knowledge of tools such as Qualys, PowerBI, and/or SAST/DAST.

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.