Job Description

NielsenIQ is maturing its Vulnerability Management programs and is recruiting a Cybersecurity Senior Engineer who will be responsible for evaluating the tools, processes and procedures used to assess, track and remediate vulnerabilities within legacy data centers and the cloud. You will be supporting programs across all geographies and business units.

As the Vulnerability Management Engineer, you will be responsible for maintaining the tools and technologies that discovery, assess and categorize vulnerability data across endpoints, virtualized servers and cloud-based workloads including containers. The vulnerability management engineer will have the opportunity to assess and replace the current vulnerability management platform. 

This position will involve working closely with corporate IT, network / server infrastructure teams and the Governance Risk and Controls team to deploy an enterprise vulnerability management tool and patch lifecycle management.

What you’ll do 

• Manage, maintain and tune the vulnerability management platform 

• Work with internal teams throughout the vulnerability management lifecycle to patch systems 

• Troubleshoot issues with asset discovery such as credentialed scanning, data quality, network discovery 

• Collaborate with the architecture team to harden compute resources and SaaS services 

• Work with the infrastructure team to define vulnerability management in cloud-based systems e.g. agent vs agentless deployment

• Work with the Security Operations Center for the identification and remediation of critical and 0-day vulnerabilities

• Partner with the threat intelligence teams to identify shadow IT and create a remediation plan for those systems 

We’re looking for people who have 

• Bachelor’s degree in a technical field including Computer Science, Information Systems, Math, Physics, Science or similar desired - experience in government, military or in other capacities with similar focus can be substituted 

• Experience working with government or military including nation state and sophisticated cybercrime experience including knowledge of sophisticated hacking techniques, malicious actors, IOCs, TTPs and the ability to translate intelligence into action is highly desirable

• Experience working with and securing modern enterprise technologies including containers, virtualization, cloud, secrets management, orchestration, authentication, SSO, MFA, federation in multi-cloud environments, passwordless, zero trust architecture

• Experience with Vulnerability management tools such as Tanium Comply, Rapid7, Tenable or Qualys

• Knowledge of scripting languages such as Powershell, python

• Ability to manipulate large datasets using tools such as Splunk, PowerBI, SQL

• Knowledge of MITRE ATT&CK framework

• Demonstrated engagement in security conferences, training, learning, associations is highly desired and fully supported

• Self-starter, technology and security hobbyist, enthusiast

• Lifelong learner with endless curiosity 

Additional Information

All your information will be kept confidential according to EEO guidelines.

About NielsenIQ 

NielsenIQ is a global measurement and data analytics company that provides the most complete and trusted view available of consumers and markets worldwide. We provide consumer packaged goods manufacturers/fast-moving consumer goods and retailers with accurate, actionable information and insights and a complete picture of the complex and changing marketplace that companies need to innovate and grow. Our approach marries proprietary NielsenIQ data with other data sources to help clients around the world understand what’s happening now, what’s happening next, and how to best act on this knowledge. We like to be in the middle of the action. That’s why you can find us at work in over 90 countries, covering more than 90% of the world’s population. For more information, visit www.niq.com.

NielsenIQ is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class.