Vulnerability Management Analyst

Lexmark is seeking a dedicated and skilled Vulnerability Assessment Analyst to join our organization’s cybersecurity team. The Vulnerability Management Analyst will play a key role in identifying, assessing, and remediating security vulnerabilities within our technology infrastructure. This position is critical in ensuring the security and integrity of our systems and data. 

WHAT YOU WILL BE DOING 

• Perform regular compliance and vulnerability scans using industry-standard tools to identify security weaknesses in the organization's systems, networks, and applications. 

• Analyze scan results to prioritize and categorize risks and vulnerabilities based on their severity and potential impact. 

• Collaborate with system owners and support teams to prioritize and facilitate the remediation of identified vulnerabilities, tracking progress and ensuring timely resolution. 

• Assist in the implementation of patch management processes to prioritize vulnerabilities and ensure systems are up to date with security patches. 

• Generate and distribute compliance risks and vulnerability reports to relevant stakeholders, providing clear and actionable recommendations for remediation. 

• Stay informed about emerging security threats, risks and vulnerabilities, as well as industry best practices for vulnerability management. 

• Ensure that systems and applications comply with relevant security standards, regulations, and internal policies. 

• Maintain accurate records of vulnerability assessments, remediation efforts, and security configurations. 

• Work closely with IT and other cross-functional teams, and third-party vendors to improve the organization's security posture. 

MUST-HAVE QUALIFICATIONS, SKILLS, EXPERIENCE 

• Demonstrated experience in vulnerability management, cybersecurity, or related roles. 

• Proficiency with vulnerability scanning tools (e.g., Nessus, Qualys, OpenVAS, Tenable) and experience with vulnerability assessment methodologies. 

• Familiarity with security standards, frameworks, and compliance requirements  

• Strong IT background and knowledge of IT business systems 

• Ability to work on own initiative with minimal supervision 

• Excellent communication skills, both written and verbal.  

• Detail-oriented and able to manage multiple tasks effectively. 

Experience with the following are differentiators:  

• Ability to work independently and as part of a team.  

• Strong organizational skills and the ability to prioritize tasks effectively. 

Certifications (preferred but not required):  

• Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH), are a plus. 

EDUCATIONAL QUALIFICATIONS  

• Bachelor’s degree in business, information technology, Computer Science, Engineering, Cybersecurity, or related field   

YEARS OF EXPERIENCE IN THIS FIELD  

• 5+ years of Information Technology experience  

• 3+ years’ experience in vulnerability management