Diverse Lynx
Tech Core - Support Engineer Specialist
Diverse Lynx, Charlotte, North Carolina, United States, 28245
The Vulnerability Analyst will support the configuration compliance program by developing configuration compliance policies, validating them with technology partners, implementing them via tooling, and ensuring consistently accurate scans and reports are generated. Will work on multiple technology products at one time and enable remediation of vulnerability and compliance findings. The ideal candidate for this role will have a strong technical foundation in system administration (Unix or Windows), familiarity with networking and cyber security, and hands‑on experience with infrastructure scanning tools such as Symantec, Qualys, Tanium, Tenable, etc. Cloud, container, and/or familiarity with python, bash, PowerShell and/or regex experience is a plus as well as the ability to develop scripts and run code. The candidate must be equally comfortable speaking with developers as well as infrastructure teams about vulnerabilities and configuration compliance. The Vulnerability Analyst will be accountable for the identification, reporting and remediation of vulnerability and compliance findings within their area of responsibility.
Principal Expectations
Assist in facilitating vulnerability and compliance scanning and reporting activities, as directed by senior team members, ensuring accurate & timely identification, reporting, and escalation.
Leverage vulnerability management reports and metrics, to drive remediation of vulnerabilities for specified areas of the environment.
Communicate with our financial client technology staff on vulnerability management and remediation of key vulnerabilities. Assist teams with understanding the vulnerability, possible remediations, and assist with false positives or mitigation solutions.
Identify enhancements to tools, standards, and processes to enable continuous process improvement and automation of existing processes.
Maintain awareness of the latest critical information security vulnerabilities, threats, and exploits.
In zero‑day events, iterate through VM lifecycle – creatively assist with time‑sensitive escalations, developing new types of reports, and perform special investigations.
Required Skillsets
Bachelor’s degree in a related field (Computer Science, Engineering, Information Systems, etc.) or the equivalent combination of training and experience.
3+ years of experience in technology or cyber security.
Mid‑level knowledge of Windows or Linux system administration and related security configurations, networking, and cyber security.
Intermediate Python development experience preferred.
Virtualization, cloud, and container experience preferred.
Working knowledge of security risk oversight, CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), and technical security vulnerability remediation/mitigation.
Experience with enterprise vulnerability management platforms such as Rapid7 Nexpose, Tenable Nessus, or Qualys.
Experience with ServiceNow preferred.
Skilled at analyzing IT/VM data sets using tools such as Excel or Power BI and presenting in a meaningful, digestible format for stakeholders and leadership teams.
Excellent communications skills (verbal and written) are required. Adept at communicating concepts to diverse audiences with varying skill sets.
A self‑motivated, detail‑orientated individual with the ability to work independently as well as function as an integral part of a team and take initiative and ownership in a fast‑paced environment.
Mandatory Skills
Solid working experience and knowledge of Unix operating systems or Windows OS. Understanding of databases, web technologies, and network devices.
Experience with vulnerability scanners.
Strong verbal and written communications skills.
Intermediate competency with spreadsheets.
Intermediate competency writing scripts using python.
Able to write documentation.
Ability to identify and solve problems.
Able to organize meetings, and translate discussed decisions into actions.
Self‑directing with sense of ownership.
Desired Skills
Ability to design and document processes.
Ability to teach others their area or responsibility.
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
#J-18808-Ljbffr
Principal Expectations
Assist in facilitating vulnerability and compliance scanning and reporting activities, as directed by senior team members, ensuring accurate & timely identification, reporting, and escalation.
Leverage vulnerability management reports and metrics, to drive remediation of vulnerabilities for specified areas of the environment.
Communicate with our financial client technology staff on vulnerability management and remediation of key vulnerabilities. Assist teams with understanding the vulnerability, possible remediations, and assist with false positives or mitigation solutions.
Identify enhancements to tools, standards, and processes to enable continuous process improvement and automation of existing processes.
Maintain awareness of the latest critical information security vulnerabilities, threats, and exploits.
In zero‑day events, iterate through VM lifecycle – creatively assist with time‑sensitive escalations, developing new types of reports, and perform special investigations.
Required Skillsets
Bachelor’s degree in a related field (Computer Science, Engineering, Information Systems, etc.) or the equivalent combination of training and experience.
3+ years of experience in technology or cyber security.
Mid‑level knowledge of Windows or Linux system administration and related security configurations, networking, and cyber security.
Intermediate Python development experience preferred.
Virtualization, cloud, and container experience preferred.
Working knowledge of security risk oversight, CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), and technical security vulnerability remediation/mitigation.
Experience with enterprise vulnerability management platforms such as Rapid7 Nexpose, Tenable Nessus, or Qualys.
Experience with ServiceNow preferred.
Skilled at analyzing IT/VM data sets using tools such as Excel or Power BI and presenting in a meaningful, digestible format for stakeholders and leadership teams.
Excellent communications skills (verbal and written) are required. Adept at communicating concepts to diverse audiences with varying skill sets.
A self‑motivated, detail‑orientated individual with the ability to work independently as well as function as an integral part of a team and take initiative and ownership in a fast‑paced environment.
Mandatory Skills
Solid working experience and knowledge of Unix operating systems or Windows OS. Understanding of databases, web technologies, and network devices.
Experience with vulnerability scanners.
Strong verbal and written communications skills.
Intermediate competency with spreadsheets.
Intermediate competency writing scripts using python.
Able to write documentation.
Ability to identify and solve problems.
Able to organize meetings, and translate discussed decisions into actions.
Self‑directing with sense of ownership.
Desired Skills
Ability to design and document processes.
Ability to teach others their area or responsibility.
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
#J-18808-Ljbffr