Manage and maintain vulnerability scanning operations using commercial and open-source security tools across enterprise infrastructure, cloud environments, operating systems, applications, and externally exposed services
Monitor threat intelligence feeds, vendor advisories, security research, and emerging vulnerabilities to identify risks impacting Intermedia systems and escalate critical threats appropriately
Work directly with infrastructure, operations, engineering, and application teams to develop practical remediation and mitigation plans for identified vulnerabilities
Track remediation progress against defined SLAs, follow up on overdue items, and communicate risk and remediation status to leadership through metrics and reporting
Maintain and support vulnerability management platform, scanner infrastructure, cloud integrations, asset inventory integrations, and related automation workflows
Maintain vulnerability management procedures, standards, documentation, and operational processes to ensure accuracy, consistency, and alignment with security best practices
Collaborate with Security Operations and Incident Response teams during security investigations, threat analysis, incident response activities, and remediation efforts
Assist with identifying unmanaged, unsupported, or non-compliant systems through asset inventory analysis and vulnerability assessment activities
Support audit, compliance, and governance activities by maintaining accurate remediation records, exception tracking, and supporting documentation
Requirements
Bachelor’s Degree or equivalent combination of education and experience
Minimum 2 years of relevant experience
Experience with Vulnerability Management and related processes and procedures
Experience utilizing Qualys for the following: Scans servers, desktops, cloud workloads, and network devices to identify security vulnerabilities
Fundamental Information Security knowledge and general understanding of systems and networking fundamentals
Experience with Microsoft technologies and Linux operating systems
Understanding of OWASP Top 10 and familiarity with vulnerability management concepts such as CVE, CVSS, and emerging threat intelligence
Excellent written and verbal communication skills with the ability to work effectively across teams
Demonstrates resourcefulness, teamwork, strong ownership, and the ability to manage priorities with urgency
Knowledge of cloud platforms and related technologies; Python and PowerShell experience is a plus, but not required
Tech Stack
Cloud
Linux
Python
Benefits
We hire, promote, and compensate employees based on their ability to perform their job responsibilities, without regard to race, color, creed, religion, sex, gender, marital status, national origin, ancestry, age, citizenship, physical or mental disability, sexual orientation, or any other basis protected by applicable law (collectively referred to in our Code of Conduct as “Protected Classes”).
We do not tolerate employment discrimination in the workplace, and we are committed to making reasonable accommodations for identified disabilities or other limitations as required by all applicable laws.
We are an equal opportunity employer and value diversity at our company.