Infosec Engineer

About the Role

In this role you will be part of the Defensive Engineering team within Enterprise Security. Defensive Engineering comprises of Endpoint Protection, Vulnerability Management & Attack Surface Management is responsible to upkeep the security state of all the assets within the organization. You will build relationships and collaborate with senior members of technical and product teams to understand the technical & business context around applications and processes and influence decisions around improving the security state of the estate

What You'll Do

• Coordinate internally within Defensive Engineering & develop a mitigation plan for TTP’s, IOC’s & Threat Advisories
• Review Vulnerability information from multiple data sources to determine risk rating to organization assets
• Analyze & Report Vulnerabilities to multiple stakeholders for remediation purposes
• Partner with Product, Information Security & Patching teams in investigation & Response of Critical Incidents
• Supports Compliance & Risk Management activities by flagging risks associated with Obsolete OS / Software
• Ensure Rapid Response processes are rehearsed & kept up to date to handle any Zero Day Vulnerabilities or real time attacks
• Maintain strong partnerships with people to drive end to end Vulnerability Management program
• Monitor Organization Network for any potential Zero Day Vulnerabilities / Exploits
• Provide support in resolving Vulnerability Scanning & Reporting issues
• Perform continuous periodic scans across the estate to identify known & unknown vulnerabilities
• Publish monthly Vulnerability Management bulletin to InfoSec Leadership

Who You Are