Senior Engineer Information Security – Vulnerability Management
Job Description
NielsenIQ is maturing its Vulnerability Management programs and is recruiting a Cybersecurity Senior Engineer who will be responsible for evaluating the tools, processes and procedures used to assess, track and remediate vulnerabilities within legacy data centers and the cloud. You will be supporting programs across all geographies and business units.
As the Vulnerability Management Engineer, you will be responsible for maintaining the tools and technologies that discovery, assess and categorize vulnerability data across endpoints, virtualized servers and cloud-based workloads including containers. The vulnerability management engineer will have the opportunity to assess and replace the current vulnerability management platform.
This position will involve working closely with corporate IT, network / server infrastructure teams and the Governance Risk and Controls team to deploy an enterprise vulnerability management tool and patch lifecycle management.
What you’ll do
Manage, maintain and tune the vulnerability management platform
Work with internal teams throughout the vulnerability management lifecycle to patch systems
Troubleshoot issues with asset discovery such as credentialed scanning, data quality, network discovery
Collaborate with the architecture team to harden compute resources and SaaS services
Work with the infrastructure team to define vulnerability management in cloud-based systems e.g. agent vs agentless deployment
Work with the Security Operations Center for the identification and remediation of critical and 0-day vulnerabilities
Partner with the threat intelligence teams to identify shadow IT and create a remediation plan for those systems
We’re looking for people who have
Bachelor’s degree in a technical field including Computer Science, Information Systems, Math, Physics, Science or similar desired - experience in government, military or in other capacities with similar focus can be substituted
Experience working with government or military including nation state and sophisticated cybercrime experience including knowledge of sophisticated hacking techniques, malicious actors, IOCs, TTPs and the ability to translate intelligence into action is highly desirable
Experience working with and securing modern enterprise technologies including containers, virtualization, cloud, secrets management, orchestration, authentication, SSO, MFA, federation in multi-cloud environments, passwordless, zero trust architecture
Experience with Vulnerability management tools such as Tanium Comply, Rapid7, Tenable or Qualys
Knowledge of scripting languages such as Powershell, python
Ability to manipulate large datasets using tools such as Splunk, PowerBI, SQL
Knowledge of MITRE ATT&CK framework
Demonstrated engagement in security conferences, training, learning, associations is highly desired and fully supported
Self-starter, technology and security hobbyist, enthusiast
Lifelong learner with endless curiosity
Additional Information
All your information will be kept confidential according to EEO guidelines.
About NielsenIQ
NielsenIQ is a global measurement and data analytics company that provides the most complete and trusted view available of consumers and markets worldwide. We provide consumer packaged goods manufacturers/fast-moving consumer goods and retailers with accurate, actionable information and insights and a complete picture of the complex and changing marketplace that companies need to innovate and grow. Our approach marries proprietary NielsenIQ data with other data sources to help clients around the world understand what’s happening now, what’s happening next, and how to best act on this knowledge. We like to be in the middle of the action. That’s why you can find us at work in over 90 countries, covering more than 90% of the world’s population. For more information, visit www.niq.com.
NielsenIQ is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class.