IDEXX Laboratories, Inc.
Senior Vulnerability Management Security Analyst, Information Security
IDEXX Laboratories, Inc., Westbrook, Maine, us, 04098
Overview
IDEXX is seeking a Senior Vulnerability Management Security Analyst to join our Information Security / Cybersecurity team as we develop and mature our vulnerability management program. This is a hands-on role that involves both strategic planning and tactical, sometimes manual, work to drive remediation and lifecycle improvements. Responsibilities
Lead and conduct vulnerability scans across on-prem and multi-cloud environments using industry standard tools Perform detailed analysis of scan results across infrastructure, applications, containers, and code Correlate vulnerabilities with threat intelligence and system context to drive accurate risk assessment for prioritization Collaborate with infrastructure, cloud, and development teams to prioritize and drive remediation Contribute to the creation and scaling of a structured vulnerability lifecycle management program Engage in planning and execution including automation of manual workflows Use GHAS (CodeQL) for code analysis and Aqua for container runtime and image security Work with developers to integrate tools and remediations into workflows and pipelines Stay informed on emerging vulnerabilities and threat activity Assist in response efforts when exploitation of known vulnerabilities is detected Produce and deliver reporting and dashboards that reflect current risk and remediation efforts Communicate technical findings clearly to both technical and non-technical stakeholders Drive continuous improvement of processes, metrics, and tool configurations Mentor junior team members and provide coverage across vulnerability operations Qualifications
At least 8-10 years in vulnerability management analysis, security engineering, or related cybersecurity role Deep familiarity with sources of vulnerability information, including system and container scans, Cloud Security Posture Management, and static/dynamic code analysis Strong grasp of CVSS, prioritization techniques (KVE, EPSS), and remediation workflows Experience in developing and maturing a vulnerability management program Bachelor’s degree in cybersecurity, computer science, or related field—or equivalent hands-on experience Adaptable and proactive, ready to engage in hands-on work while seeking opportunities to streamline and automate Strong analytical skills and ability to distill technical information into actionable insights Scripting or automation experience (e.g., Python, Bash, PowerShell) is a plus Certifications like CISSP, GCIH, OSCP, or similar are beneficial but not required Location
Westbrook, Maine; on-site 8 days per month required What You Can Expect From Us
Base annual salary target: $120,000 - $140,000 Opportunity for annual cash bonus Health / Dental / Vision Benefits Day-One 5% matching 401k Additional benefits including pet insurance, mental health resources, volunteer paid days off, employee stock program, and more Why IDEXX?
IDEXX is committed to diversity and equal opportunity. We encourage applicants from diverse backgrounds. We are an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, or any protected category.
#J-18808-Ljbffr
IDEXX is seeking a Senior Vulnerability Management Security Analyst to join our Information Security / Cybersecurity team as we develop and mature our vulnerability management program. This is a hands-on role that involves both strategic planning and tactical, sometimes manual, work to drive remediation and lifecycle improvements. Responsibilities
Lead and conduct vulnerability scans across on-prem and multi-cloud environments using industry standard tools Perform detailed analysis of scan results across infrastructure, applications, containers, and code Correlate vulnerabilities with threat intelligence and system context to drive accurate risk assessment for prioritization Collaborate with infrastructure, cloud, and development teams to prioritize and drive remediation Contribute to the creation and scaling of a structured vulnerability lifecycle management program Engage in planning and execution including automation of manual workflows Use GHAS (CodeQL) for code analysis and Aqua for container runtime and image security Work with developers to integrate tools and remediations into workflows and pipelines Stay informed on emerging vulnerabilities and threat activity Assist in response efforts when exploitation of known vulnerabilities is detected Produce and deliver reporting and dashboards that reflect current risk and remediation efforts Communicate technical findings clearly to both technical and non-technical stakeholders Drive continuous improvement of processes, metrics, and tool configurations Mentor junior team members and provide coverage across vulnerability operations Qualifications
At least 8-10 years in vulnerability management analysis, security engineering, or related cybersecurity role Deep familiarity with sources of vulnerability information, including system and container scans, Cloud Security Posture Management, and static/dynamic code analysis Strong grasp of CVSS, prioritization techniques (KVE, EPSS), and remediation workflows Experience in developing and maturing a vulnerability management program Bachelor’s degree in cybersecurity, computer science, or related field—or equivalent hands-on experience Adaptable and proactive, ready to engage in hands-on work while seeking opportunities to streamline and automate Strong analytical skills and ability to distill technical information into actionable insights Scripting or automation experience (e.g., Python, Bash, PowerShell) is a plus Certifications like CISSP, GCIH, OSCP, or similar are beneficial but not required Location
Westbrook, Maine; on-site 8 days per month required What You Can Expect From Us
Base annual salary target: $120,000 - $140,000 Opportunity for annual cash bonus Health / Dental / Vision Benefits Day-One 5% matching 401k Additional benefits including pet insurance, mental health resources, volunteer paid days off, employee stock program, and more Why IDEXX?
IDEXX is committed to diversity and equal opportunity. We encourage applicants from diverse backgrounds. We are an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, or any protected category.
#J-18808-Ljbffr