Experience Inc. Jobs

Job Information

OSI Digital Sr. Business Systems Analyst - Vulnerability Management Analyst in Santa Ana, California

Position Description:

The Vulnerability Management Analyst works within clients?s Information Security area, interacting directly with stakeholders to address issues related to remediation of vulnerability scan. The Vulnerability Management Analyst?s support activities are focused on helping customers understand their vulnerability scan results, providing guidance on the remediation of failing threats, and evaluating customer disputes of failing threats (false positive claims).

Maintain and improve upon, as necessary, the existing vulnerability management program, includingmaintenance of documents, procedures, reporting, and stakeholder communications. Provide guidance to stakeholders in support of vulnerability management services, which includes, but is not limited to, sharing goals and road maps of vulnerability management. Analysis and validation of scan results communicated to clients through reporting and results-review meetings. Provide stakeholders with remediation recommendations and guidance, up to and including remediation tracking and reporting. Provide stakeholders reports that provide the most value based on security maturity and established vulnerability management goals. This requires the ability to be adaptive in report parameters and formats depending on stakeholder needs and target audience. Ability to use Microsoft office tools to report on enterprise level vulnerability data.

Work closely with the Service Now development team to enhance and continually maintain the Vulnerability Management module by analyzing and documenting system requirements and providing UAT support.

Responsibilities:

  • Validate the scoping of vulnerability and web application scanning engagements

  • Assist Stakeholders with the interpretation of their vulnerability scan results

  • Assist in operational projects and tasks

  • Participate in the ongoing improvement of the scanning and vulnerability remediation processes

  • Providing remediation support on any potential findings

DirectEmployers