Senior Anaylst, Vulnerability and Exposure Management

Job Description :

SENIOR ANALYST VULNERABILITY AND EXPOSURE MANAGEMENT

About News Corp:

News Corp is a global diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers and businesses throughout the world. The company comprises businesses across a range of media including: news and information services book publishing digital real estate services cable network programming as well as pay-tv distribution in Australia.

What Youll Do

Research and report on security vulnerabilities and the latest advancements in the vulnerability management lifecycle. Collaborate and coordinate with team members partners and relevant businesses within the News Corp community.

Responsibilities

Understand and work against scan results from multiple types of vulnerability assessment systems (Cloud Security Posture Management (CSPM) and Vulnerability Management (VM))

Ensure client agent coverage is managed at an acceptable level.

Support business with Vulnerability Management prioritisation

Understand the current state of the components in the IT stack ranging from networking storage compute (virtualization containers) applications & security mgmt.

Collaborate with team-mates and understand the threats vulnerabilities and risks to the enterprise

Develop meaningful measures of the current state of findings to produce meaningful and business-friendly metrics

Prepare reports regarding the status of findings including the cause of the state of the finding (repaired expired reopened)

Daily Monitoring of findings and scanning systems in order to detect and repair related technology hygiene

Collaborate with cybersecurity partners to understand the criticality of exposure via intelligence as well as a technical understanding of the exposure through its control points and exploitability as well as CVSS and EPSS scoring

Govern life cycle issues where upgrades are required instead of patching Automate vulnerability management tasks

Train and mentor junior engineers

Required Experience & Qualifications

Ability to conduct the following activities:

o Identify false and true positives alerts and investigate their implications

o Analyze the severity of vulnerabilities log the vulnerability information into a repository alert the remediation team and coordinate to close the listed vulnerabilities.

o Provide recommendations to improve the effectiveness of the scanning tool to reduce future false positives

Conducting communications to the respective audiences at the proper frequency

Managing root cause analysis and lessons learned to accommodate growth in maturity and improve overall technical hygiene

Prioritise responses to accommodate scale and business needs

Must have experience working in a Cloud first environment preferably AWS In addition to experience with traditional scan based vulnerability assessment must have experience with Cloud Security Posture Management (CSPM)

Desired Qualifications

Excellent verbal written and interpersonal communication skills

Experience working in a large enterprise environment

Strong analytical skills with high attention to detail and accuracy

Able to work effectively as well as independently in a team environment Strong organisational multi-tasking and prioritising skills

Able to meet time-sensitive deadlines required

Able to work collaboratively and build consensus is essential

Able to make sound decisions and exercise good judgement

Able to work and achieve goals without constant supervision

Able to handle confidential material in a professional manner

Able to transform complex data into meaningful and prioritised action Able to create business friendly visualisations for complex datasets

Preferred Skills & Knowledge

Basic knowledge and experience in administering IT components (systems networks servers and cloud-related components)

Experience performing analysis and reporting in Splunk

Experience and comfortability working with Python

Capable of developing dashboarding solution

Location:

Working Arrangement: Hybrid - a minimum of three days in office per week

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race color religion sex national origin protected veteran status or disability status. EEO/AA/M/F/Disabled/Vets

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race color religion sex age national origin protected veteran status disability status or any other protected characteristic.

Reasonable Accommodation

We are committed to providing reasonable accommodation for qualified individuals with disabilities in our job application and/or interview process. If you need assistance or accommodation in completing your application or participating in an interview due to a disability email us at . Please put Reasonable Accommodation in the subject line and provide a brief description of the type of assistance you need. This inbox will not be monitored for application status updates.

Please refer to the privacy notice at the bottom of this page for submitting any data access deletion or other data subject rights requests where permitted under your local laws and regulations.