Associate Security Architect

Job Description

Vulnerability Management (Rapid7) Overview : Candidate is responsible for identifying, analyzing, and prioritizing vulnerabilities in an organization system, applications and ensuring appropriate measures are taken to remediate them. Candidate will work closely with all required IT Teams to ensure that identifies vulnerabilities are addressed in a timely and effective manner. Responsibilities : • Conduct Regular Vulnerability assessments using tools such as Rapid 7, Qualys. • Hands on experience on Rapid7 is a must. • Analyze and prioritize the identified vulnerabilities based on risk assessment, severity, and exploitability. • Work with IT Teams to develop and implement remediation plans. • Monitor the progress of remediation efforts and provide regular updates to stakeholders. • Participate in Incident response and investigations related to vulnerabilities. • Stay up to date with latest threats and vulnerabilities and adjust the Vulnerability management accordingly. • Ensure compliance with applicable regulatory requirements. • Create reports and metrics to track the progress of the Vulnerabilities. • Be a champion for vulnerability management and information security including broadening awareness and use of the teams services, education of security best practices, and integration with other business areas. • Support teammates regarding vulnerability assessment, communication/rapport with other divisions and various levels of leadership, technical expertise, and career development. Requirements : • Bachelors Degree in computer science or related field. • At least 7-9 years of experience in vulnerability management • Familiarity with Vulnerability scan and assessment techniques. • Good understanding on CVSS scores • Excellent Analytical and Problem-solving skills • Strong communication skills Verbal and Written. • Ability to work independently. • Familiarity with security frameworks like NIST, ISO27001 and regulatory compliance like SOX. • Experience in Azure cloud. • Knowledge on Scripting languages like PowerShell or python will be advantage. • Experience with risk assessments and prioritization methodologies. Responsibilities: • Architectural Design: Develop and maintain security architecture frameworks incorporating Tenable solutions to address organizational risk, compliance, and security objectives. • Solution Integration: Design and oversee the integration of Tenable products (e.g., Tenable.io, Tenable.sc, Tenable.ot) into existing security infrastructures. • Strategic Planning: Collaborate with senior leadership to define security requirements and develop long-term security strategies. • Risk Management: Assess and mitigate risks related to vulnerabilities and threats using Tenable's tools. • Policy and Standards: Establish and enforce security policies and best practices for Tenable product implementation. • Technical Leadership: Provide technical guidance and support on the effective use of Tenable solutions. • Optimization and Innovation: Continuously evaluate and enhance security architectures and Tenable deployments. • Documentation and Reporting: Maintain comprehensive documentation of security architectures and generate reports on security posture. • Training and Awareness: Lead training sessions to enhance understanding of Tenable products and security architecture principles.