Match score not available

Stratascale Sr. Security Consultant - Vulnerability Management

Remote: 
Full Remote
Contract: 
Salary: 
165 - 240K yearly
Experience: 
Senior (5-10 years)
Work from: 
North Carolina (USA), United States

Offer summary

Qualifications:

Bachelor's Degree or equivalent experience, Minimum of 5 years client-facing experience in security engineering, Expert knowledge with CVSS, EPSS, and threat intelligence, Experience with Tenable or Microsoft deployment, Knowledge of cloud services like AWS, Azure, Google Cloud.

Key responsabilities:

  • Architect vulnerability management infrastructure
  • Execute and manage vulnerability scanning across networks
  • Advise customers on best practices and remediation strategies
  • Lead the development of mature vulnerability management programs
  • Monitor cybersecurity conditions and mentor junior consultants
Stratascale – An SHI Company logo
Stratascale – An SHI Company Information Technology & Services SME https://stratascale.com/
201 - 500 Employees
See more Stratascale – An SHI Company offers

Job description

Job Summary

The Stratascale Sr. Security Consultant for Vulnerability Management will play a vital role in helping our clients identify, assess, and mitigate vulnerabilities in their systems, networks, and applications. The Security Consultant will work closely with clients to develop and implement effective vulnerability management strategies to ensure their infrastructure remains secure against current and emerging threats.

This position will report to the Director of Managed Security Operations within Stratascale.

This position is remote with a Home Office setup as determined by Stratascale management. 

About Us

As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.

To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.

Responsibilities

Include, but not limited to:

  • Architect the deployment of vulnerability management infrastructure that includes scanners, sensors, and agent configurations.
  • Plan, design, and implement enterprise vulnerability scanning infrastructure that best supports the customer in their cloud, on-prem, or hybrid environment.
  • Execute and manage vulnerability scanning of internal, external and cloud networks.
  • Perform Vulnerability Management gap assessments for customers that include failed credentials, vulnerability prioritization, scan coverage and configuration.
  • Ability to troubleshoot platform issues and scanning failures independently.
  • Advise customers on vulnerability management best practices and remediation of vulnerabilities that are impacting the customer environment.
  • Seek efficiencies through automation and orchestration solutions, reduce manual work and enhance the organization's responsiveness to emerging threats and vulnerabilities
  • Lead efforts for the development of a mature vulnerability management program, such as assisting in building processes and workflows that empower partners to remediate with actionable and context-aware information as well as developing standards, policies, procedures, and best practices, emphasizing a balanced approach to security and organizational needs.
  • Own and build relationships with key stakeholders such as cross-functional leaders and internal auditors.
  • Establish credibility as a trusted advisor to our customers.
  • Monitor external data sources to stay current on cybersecurity defense conditions, determine effects, and align responses with organizational priorities.
  • Provide guidance and collaborate with peers on the vulnerability management practice team and mentor junior consultants.
  • Develop and publish thought leadership content such as blogs, articles, whitepapers, and case studies related to vulnerability management, cybersecurity, and industry best practices.

Qualifications

  • Bachelor’s Degree or equivalent experience
  • Minimum of 5 years client-facing experience working on security engineering-based projects and solutions services
  • Minimum of 5 years experience in a dedicated vulnerability management role
  • Minimum of 5 years of experience managing complex solutions delivered on time and successfully
  • Minimum of 5 years of experience reporting on multiple service delivery opportunities and ongoing projects
  • Minimum of 5 years of experience understanding technical security solutions, addressing customer risk exposure, and solving critical use cases
  • Minimum of 5 years of experience building and maturing security operations platforms within enterprise organizations
  • Expert knowledge with CVSS, EPSS, threat intelligence, and performing risk analysis
  • Expert knowledge of supporting multiple vulnerability management focused products and services
  • Proven understanding of security services engagements

Required Skills

  • Experience with deploying and maintaining Tenable and/or Microsoft
  • Ability to create executive-level vulnerability metrics and dashboards
  • Knowledge of scripting tasks in Python, PowerShell, BASH, or other native scripting languages
  • Knowledge of cloud service providers such as Amazon AWS, Microsoft Azure, and Google Cloud
  • Ability to write detailed vulnerability recommendations based on prioritization and remediation activities that need to be performed that include registry changes, patch deployment, and other mitigating factors
  • Outstanding written and verbal communication and strong ability to build relationships with customers, partners, and staff members
  • Ability to train and disseminate information within an area or operation and work effectively within all levels of an organization, both internally and externally
  • Attention to detail, organization, and follow up skills are critical
  • Excellent presentation skills and comfortable leading meetings and discussions
  • Problem solving skills with the ability to serve as an escalation point and knowledgeable resource and direct resolution while accessing circumstances and current information to make informed and best decision

Certifications Required

Certifications below are preferred but not required:

  • Industry certifications:
    • CISM / CISA / CRISC
    • Security+
    • Network+
    • GIAC (GSEC)
  • Vendor Solutions and product specific certifications or experience (or equivalent):
    • CrowdStrike/Sentinel One/Tanium
    • Qualys/Tenable/Rapid7
    • Kenna/Nucleus Security/Brinqa
    • Any Network/Cloud/MSSP security engineering experience
Unique Requirements

  • Attend virtual customer meetings when appropriate
  • Travel to customer sites, partner sites, conferences, and Stratascale offices up to 10% annually
  • Candidate will need to have access to an international airport.

Additional Information

  • The estimated annual pay range for this position is $165,000 - $240,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
  • Equal Employment Opportunity – M/F/Disability/Protected Veteran Status

Compensation Structure

Base Plus Bonus

Approved Min (Total Target Comp)

USD $165,000.00/Yr.

Approved Max (Total Target Comp)

USD $240,000.00/Yr.

Job Wrapping 1

Required profile

Experience

Level of experience: Senior (5-10 years)
Industry :
Information Technology & Services
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Relationship Building
  • Problem Solving
  • Verbal Communication Skills
  • Detail Oriented

Cybersecurity Consultant Related jobs