Full-Time Senior Systems Security Engineer (Remote)

As a Systems Security Engineer Expert, you will provide data-driven insights contributing to the organization's security strategy and vulnerability management practices.

Establish and maintain regional and global reports to support Cloud and Application Attack Surface Management.

Embrace and integrate a threat-informed approach, and perform analytical reviews to enhance Experian's Cloud and Application Attack Surface Management.

Join the Cloud and Application Attack Surface Management team and report to the Director of Attack Surface Management.

Key Responsibilities:

• Guide development of vulnerability management metrics, gathering feedback and sharing metrics with senior leaders.
• Evaluate and define functional requirements for vulnerabilities, flaws, and misconfiguration metrics.
• Develop, maintain, and run advanced reporting, dashboard, and scorecard results.
• Communicate metrics to system owners and partners on outstanding vulnerabilities, issues, and concerns.
• Develop and automate vulnerability metrics with specific procedures for data collection, analysis, and charting, partnering with necessary teams.
• Determine requirements for technical solutions and tools to implement Vulnerability Metrics.
• Develop vulnerability KPIs and metrics to demonstrate coverage and remediation effectiveness.
• Develop program efficacy metrics to support platform stability and improvements.
• Review business and internal requests for new or vulnerability management reporting, design the solution, and develop metrics.
• Work with stakeholders to identify risk-based vulnerability management metrics that align with the security program and security risk management.
• Develop procedures to structure the metrics and reporting framework as part of a long-term strategy.
• Produce scoping documents outlining the requirements for business requests.
• Provide recommendations based on data analysis and findings related to vulnerability management processes.
• Aggregate vulnerability data across technologies (endpoints, servers, network equipment, cloud) and interpret and present risk.

Required Background:

• Bachelor's degree in Computer Science or related field, or 5+ years of equivalent work experience in Cyber Security/Information Security and Vulnerability Management reporting.
• Experience with tools such as SQL, Tableau, PowerBI, and Excel.
• Experience in ServiceNow query and report development.
• Experienced with collaboration tools such as ServiceNow and Confluence.
• Understanding of the end-to-end security metrics process, including metrics collection, tracking, and reporting.
• Understanding of Common Vulnerability Scoring System (CVSS), including calculations and implications of base, temporal, and environmental scoring factors.
• Experience collecting, analyzing, and interpreting qualitative and quantitative data from several sources to detail results and analyze findings to provide threat intelligence.
• Familiarity with architecture, engineering, and operations of one or more vulnerability management tools (Wiz, Qualys, Rapid7, ServiceNow).
• Knowledge of major cloud platforms (AWS, Azure, or GCP).
• Broad understanding of cybersecurity threats, vulnerabilities, controls, and remediation strategies.

What is the last date for applying to the job?

Which countries are accepted for this remote job?