Enterprise Security Posture Management Analyst

The Enterprise Security Posture Management Analyst will oversee the identification, assessment, and mitigation governance of vulnerabilities and configuration weaknesses across on-premises, cloud, and hybrid environments to ensure robust security posture and compliance. This role involves management of proactive scanning, risk prioritization, and reporting. This role also involves coordination of penetration testing activities against both external & internal infrastructure and Internet-facing web applications. The analyst will also need to collaborate with IT engineering and development team regarding remediation efforts for all findings. The ideal candidate will have outstanding communication skills and drive automation & process improvements to address emerging threats.

• Conduct continuous vulnerability assessments and verify appropriate coverage is maintained across on premises and cloud environments.


• Perform configuration reviews to detect and prioritize risks in networks, systems, applications, and cloud infrastructures.


• Detect, report, and provide oversight over end-of-life hardware and software.


• Enrich vulnerability data with threat intelligence, perform risk assessments, and manage escalations for critical issues, including zero-day vulnerabilities.


• Continually improve vulnerability and configuration management programs, including policies, procedures, and tools for continuous monitoring and remediation capabilities.


• Coordinate remediation efforts with cross-functional teams, ensuring timely patching, configuration hardening, and mitigation strategies to reduce attack surfaces.


• Create and maintain metrics, dashboards, and reports on trends, remediation progress, and program effectiveness for senior leadership.


• Drive automation initiatives for scanning, reporting, and compliance checks to enhance efficiency and scalability.


• Stay updated on industry trends, emerging threats, and best practices, recommending enhancements to security controls and tools.

Qualifications

• 
  
  
  
  • Bachelor s degree in Computer Science, Information Security, Cybersecurity, or a related field or equivalent experience.
  
  
  • All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.
  
  
  
  

Experience:

• 6+ years of experience in cybersecurity, with at least 3-5 years focused on vulnerability and configuration management.


• Proven experience managing vulnerability programs in on-premises, cloud (e.g., AWS, Azure, GCP), and hybrid environments.


• Track record of leading security assessments, tool implementations, and cross-team collaborations in enterprise settings.


• Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent are highly desirable.

All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.

Skills

• Proficiency with vulnerability scanning and management tools like Qualys, Nessus, Tenable, Rapid7, or similar platforms.


• Strong knowledge of configuration management standards and Cloud Security Posture Management (CSPM).


• Excellent communication skills to explain risk to both technical and non-technical audiences and influence leaders across IT and the business.


• Analytical skills for risk assessment, data enrichment, and trend analysis.


• Curiosity to dig for root causes and find creative solutions to complex problems.


• Experience with scripting and automation languages (e.g., Python, PowerShell) for process optimization and integration.


• Familiarity with threat intelligence, incident response, and security operations in fast-paced environments.