![BMA Group](https://media.trabajo.org/img/noimg.jpg)
Security Vulnerability Metrics
hace 2 semanas
Job Title:
Security Vulnerability Metrics & Data Analyst
Job Category:
Professional
Department/Group:
Attack Surface Management
Position Type:
Full time
Location:
Remote, Costa Rica
Reports to:
Director Attack Surface Management
Security Vulnerability Metrics & Data Analyst
Description
This role will establish and maintain regional and global reports in support of the Cloud and Application Attack Surface Management scope, embrace and integrate a threat-informed approach, and perform regular analytical reviews for the purpose of enhancing Experian's Cloud and Application Attack Surface Management with intelligent, prioritized, and actionable transparency.
- This is an independent role, responsible for driving the development of vulnerability
able to articulate metrics to senior leaders
- Evaluate and define functional requirements for vulnerabilities, flaws and misconfigurations
- Understand the endtoend Cloud and Attack Surface Management metrics process
- Develop, maintain, and run advance reporting, dashboards, scorecard and analytical results
- Communicate metrics to system owners and business partners on outstanding
- Develop and automate vulnerability metrics with specific procedures for data collection,
- Determines requirements for technical solutions and tools to effectively implement
- Maps metrics back to strategic objectives for providing insight into the effectiveness and
- Develops vulnerability KPIs/metrics to demonstrate coverage and remediation effectiveness
- Develops program efficacy metrics to support platform stability and improvements.
- Review business and internal requests for new or vulnerability management reporting,
- Work with stakeholders to identify riskbased vulnerability management metrics that align with the security program and security risk management.
- Develop procedures to structure the metrics and reporting framework as part of a longterm strategy.
- Produce timely scoping documents outlining the requirements for business requests.
- Provide actionable recommendations to critical stakeholders based on data analysis and findings related to vulnerability management processes requiring reporting.
- Aggregating vulnerability data across technologies such as endpoints, servers, network equipment, and cloud and interpreting and presenting risk.
Formal Education & Certification
- Fouryear college diploma or university degree in computer science or computer
Knowledge & Experience
- 5+ related experience in Cyber Security/Information Security and Vulnerability
- Experienced in tools like SQL, Tableau, MS Excel etc.
- Experienced with collaboration tools such as JIRA, ServiceNow, Confluence etc.
- Understanding of endtoend security metrics process including metrics collection,
- Understanding of Common Vulnerability Scoring System (CVSS), including calculations.
- Experience with collecting, analyzing, and interpreting qualitative and quantitative data
provide sophisticated threat intelligence.
- Familiarity with architecture, engineering, and operations of one or more vulnerability
- Ability to provide creative solutions to complex problems.
- Ability to clearly communicate risk of vulnerabilities to all levels within an organization.
- Knowledge of major cloud platforms (AWS, Azure, or GCP).
- Ability to manage, organize, analyze, and present substantial amounts of data
- Experience with large scale and complex environments.
- A broad and deep understanding of cybersecurity threats, vulnerabilities, controls, and remediation strategies.
- Applied knowledge and experience in cybersecurity, technology infrastructure, vulnerability management and security and controls.
- An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easilyunderstood and actionable manner.
- Excellent interpersonal skills and strong verbal and written communication.
- Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business.
- Outstanding writing and documentation skills.
- Strong organizational skills with proven ability to manage mu
-
Security Analyst
hace 4 semanas
San Francisco, Heredia, Costa Rica GFT Technologies SE A tiempo completoJob Description:About the role: Responsible for ensuring that vulnerability disclosure program requirements are followed and adhered to on client applications and system topologies. You will collaborate with security, application, infrastructure and DevSecOps teams to ensure vulnerabilities are identified and managed. You will work proactively with those...
-
Hacker - Vulnerability Management Consultant
hace 2 semanas
San Francisco, Heredia, Costa Rica IBM A tiempo completoIntroductionAt IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most...
-
Security Analyst
hace 2 semanas
San Francisco, Heredia, Costa Rica GFT Technologies SE A tiempo completoAbout the role:A day in this role: Prioritize newly identified vulnerabilities based upon severity, potential operational impact, exploitation, and other factors to assess risk to. Support delivery of policy metrics for the vulnerability disclosure program. Utilize tracking tools/capabilities in a vulnerability management system to report vulnerability...
-
Security Operations Analyst
hace 2 semanas
San Francisco, Heredia, Costa Rica TTEC A tiempo completoSecurity Operations Analyst - Remote, Costa RicaOur Enterprise Services organization is the machine behind our market-facing product and solution areas, enabling each of our segments to deliver for our clients. Whether Information Technology, Finance, Accounting, Tax or Treasury, Supply Chain or Legal, Marketing, or one of our Human Capital team members, we...
-
Security Operations Analyst
hace 2 semanas
San Francisco, Heredia, Costa Rica GFT Technologies SE A tiempo completoSecurity Operations Analyst: Date: Aug 24, 2023 Location: Heredia, CR, Working place: Remote Company: GFT Technologies SEAbout Us and the Role:Founded in 1987, GFT today has more than 10,000 experts around the world and is present in more than 15 markets to ensure customer proximity. With new operations from Asia to America, we continue on the path of growth...
-
Principal Engineer Security Services
hace 2 semanas
San Francisco, Heredia, Costa Rica 360training A tiempo completoPrincipal Engineer Security ServicesThe Principal Engineer Security Services will play a crucial role in ensuring the ongoing security and protection of our company's information assets. They will be responsible for designing, developing, and overseeing the implementation of cybersecurity solutions to safeguard our systems, networks, and data. The Principal...
-
Desktop Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica Moody's A tiempo completoJoin the Workplace Services Desktop Engineering Team and you'll work at the highest systems level to provide expert advice and counsel to users, management, and IT project teams for systems of the most complex nature (typically crossing function/location lines).You will be responsible for managing the governance of vulnerability remediation on Windows and...
-
Cloud Security Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica IBM A tiempo completoIntroductionAt IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most...
-
Prisma Cloud Security Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica IBM A tiempo completoIntroductionIn this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of...
-
IT Security Manager
hace 2 semanas
San Francisco, Heredia, Costa Rica DHL A tiempo completoAt DHL Express, our vision is "Connecting people, improving lives". We are the Most International Company in the World, "the big yellow machine" as we love to call it. Specifically In our Central and South America region, we cover 15 countries, from Parque Nacional Tikal in Guatemala, to Ushuaia in Tierra del Fuego - Argentina. We are more than 3,400...
-
Application Security Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica GSB A tiempo completoAn important Company in Costa Rica is looking for an Application Security EngineerEnglish AdvancedResponsibilities Application security reviews (SAST, DAST, Pen testing)Secure architecture designThreat modelingSecurity outreach to internal development teamsSecurity guidance documentationSecurity metrics delivery and improvementsBuild deep relationships with...
-
IT Security Engineer Iii
hace 2 semanas
San Francisco, Heredia, Costa Rica Thermo Fisher Scientific A tiempo completoPosition Summary:As a member of the Corporate Infrastructure and Security - Risk & Assessments team, the Security Engineer is responsible for:Providing key input and assistance in the development and implementation of a global cybersecurity risk management program Maintaining and executing the risk management policy throughout the entire risk lifecycle...
-
Manager Security
hace 2 semanas
San Francisco, Heredia, Costa Rica Philip Morris International A tiempo completoBe a part of a revolutionary changeAt PMI, we've chosen to do something incredible. We're totally transforming our business and building our future on and building our future on one clear purpose - to deliver a smoke-free future.With huge change, comes huge opportunity. So, wherever you join us, you'll enjoy the freedom to dream up and deliver better,...
-
Network Security Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica Moody's A tiempo completoThe Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moody's business and regulatory requirements. The team is responsible for the development, enforcement and monitoring of security controls, policies and procedures, disaster recovery programs, GRC (Governance, Risk and Compliance)...
-
Network Security Engineer
hace 2 semanas
San Francisco, Heredia, Costa Rica Moody's A tiempo completoThe Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moody's business and regulatory requirements. The team is responsible for the development, enforcement and monitoring of security controls, policies and procedures, disaster recovery programs, GRC (Governance, Risk and Compliance)...
-
Sr Security Partner
hace 2 semanas
San Francisco, Heredia, Costa Rica Experian A tiempo completoCompany DescriptionExperian is the world's leading global information services company. During life's big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and...
-
Security Services Account Manager
hace 2 semanas
San Francisco, Heredia, Costa Rica IBM A tiempo completoIntroductionThe Security Services Manager (SSM) serves as a point of contact between the client and IBM Managed Security Services (MSS) for operational governance of MSS security services activities and deliverables. The SSM will work with the client to provide governance, oversight, and leadership for MSS operational security activities including, but not...
-
Junior Security Analyst
hace 2 semanas
San Francisco, Heredia, Costa Rica GFT Technologies SE A tiempo completoJunior Security Analyst: Date: Feb 10, 2023 Location: Heredia, CR, Working place: Remote Company: GFT Technologies SEJunior Security AnalystJob descriptionWill support BAU activities by fulfilling multiple requests for internal users and external clients, following security best practices, guidelines set by the Global Information Security Policy and...
-
Security Services Account Manager
hace 2 semanas
San Francisco, Heredia, Costa Rica IBM A tiempo completoIntroductionThe Security Services Manager (SSM) serves as a point of contact between the client and IBM Managed Security Services (MSS) for operational governance of MSS security services activities and deliverables. The SSM will work with the client to provide governance, oversight, and leadership for MSS operational security activities including, but not...
-
Automation Security Analyst
hace 2 semanas
San Francisco, Heredia, Costa Rica Stryker A tiempo completoWhy join Stryker?:Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific.Know someone at Stryker?:Who we Want:- Dedicated achievers. People who thrive...