Security Analyst - Vulnerability Management
TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance.
TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.
Don't meet every single requirement? Studies have shown that many potential applicants discourage themselves from applying to jobs unless they meet every single requirement. TriNet always strives to hire the most qualified candidate for a particular role, ensuring we deliver outstanding results for our small and medium-size customers. So, if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, nobody's perfect - and we encourage you to apply. You may just be the right candidate for this or other roles.
A Brief Overview :
| The Security Analyst, Vulnerability Management position is responsible for ensuring the overall effectiveness of the Vulnerability Management program. |
| Design, execute, and troubleshoot discovery scanning of endpoints, optimizing asset management, scan schedules, and scanner health within Microsoft Defender for Vulnerability Management | |
| Design, execute, and troubleshoot vulnerability scanning on endpoints, optimizing and troubleshooting scan policies within Microsoft Defender for Vulnerability Management | |
| Develop, deploy, and maintain vulnerability scanning architecture, including but not limited to Microsoft Defender for Vulnerability Management sensors, scanners, licensing, and hardware/VM requirements | |
| Filter and read through vulnerability scan results in Microsoft Defender for Vulnerability Management, resolve incomplete scan results, and manage false positive vulnerabilities | |
| Create tags in Microsoft Defender for Vulnerability Management to add business context to assets/endpoints | |
| Develop template and/or custom dashboards within ServiceNow to help build statistics; For example, the most vulnerable assets, vulnerability affecting most endpoints, and/or risk posture improvement | |
| Configure and operate network vulnerability scanning tools and create reports that communicate scan results and recommended remediation actions | |
| Leverage metrics terminology to understand EPSS, CVSS 2.0, CVSS 3.0, NIST and other framework methodologies | |
| Thorough usage of Python and KQL (Kusto Query Language) utilizing data science methodologies for exporting and manipulating vulnerability data | |
| High-level understanding of the threats that vulnerabilities have to their network environment, including analysis and impact | |
| Coordinate with other teams to validate and make sure patches took effect on managed endpoints | |
| Recast severity of and/or accept the risk of a vulnerability within Microsoft Defender for Vulnerability Management, as needed | |
| Use cybersecurity expertise to deliver accurate, complex security reports that can be understood by business system owners, executives, and other stakeholders |
| Performs other duties as assigned | |
| Complies with all policies and standards |
| QUALIFICATIONS |
| HS Diploma or GED | or equivalent experience | ||
| BS | or equivalent experience | Preferred |
| 5+ years for HS, 2+ years for BS | Vulnerability management, cybersecurity operations | Preferred |
| Security+ | preferred | |||
| CISSP | preferred | |||
| GIAC Enterprise Vulnerability Assessor (GEVA) | preferred | |||
| CEH Certification | preferred |
| Experience with vulnerability management and network scanning tools such as, ServiceNow Vulnerability Response (integrated with Microsoft Defender for Vulnerability Management), ServiceNow CMDB, NMAP | |
| Leverage Microsoft Office applications, creating reports from data, including Excel, PowerPoint, and Word | |
| Knowledge of TCP/IP and other common networking concepts and protocols | |
| Knowledge of Python programming and data science methodologies | |
| Knowledgeable in basic security configuration (BSC) hardening methodologies from U.S. Defense Information Systems (DISA STIG), Center for Internet Security (CIS Benchmarks), and/or Microsoft Guidance |
Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.
TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact [email protected] to request such an accommodation.
