Security Analyst III


Job Location:

Chicago, IL - USA

Monthly Salary: Not Disclosed
Posted on: 6 hours ago
Vacancies: 1 Vacancy

Job Summary

Remote

1 year with possible extension

Must haves: 3 plus years experience in vulnerability management - Qualys or Tenable or Nessus

Description:

The Vulnerability Management Analyst supports enterprise vulnerability operations by validating findings assessing risk coordinating remediation and helping drive timely reduction of security exposure and risk across infrastructure cloud container application endpoint and externally facing environments. This role requires strong analytical judgment operational follow-through and the ability to translate large volumes of vulnerability data into clear actionable guidance for technical and non-technical stakeholders.

Key Responsibilities
  • Validate and triage vulnerability findings from internal scans external scans attack surface management sources and threat intelligence including scope validation ownership attribution and exposure assessment.
  • Assess severity exploitability exposure business impact compensating controls and residual risk to support risk-based prioritization across infrastructure cloud container endpoint network and externally exposed environments.
  • Engage technology stakeholders and remediation owners throughout the vulnerability lifecycle from identification and owner routing through remediation treatment progress tracking closure validation and risk-based escalation.
  • Support rapid response for vulnerability threat intelligence escalations and PatchNow Critical events through scope analysis owner routing remediation treatment tracking and closure verification.
  • Work with vulnerability management scanning reporting external exposure and risk prioritization tools to validate data investigate discrepancies confirm asset context and compress operational response times.
  • Identify recurring risk patterns workflow friction and data quality issues; recommend practical improvements to processes tooling automation and reporting that improve remediation outcomes and operational consistency.
Required Qualifications
  • 3 years of demonstrated experience in vulnerability management in enterprise class environments.
  • Experience with vulnerability management across cloud and container environments and supporting enterprise tools.
  • Strong understanding of vulnerability management lifecycle activities including identification validation prioritization remediation coordination risk treatment awareness and closure verification.
  • Experience working with large datasets vulnerability reports asset information and operational metrics to identify trends discrepancies and actionable insights.
  • Strong written and verbal communication skills with the ability to translate technical vulnerability findings into clear remediation guidance risk summaries and prioritization recommendations for technical and non-technical stakeholders.
  • Working knowledge of common enterprise technology environments including servers endpoints network infrastructure cloud platforms containerized workloads and container image lifecycle management.
Preferred Qualifications
  • Experience in financial services regulated environments or organizations with formal technology risk audit compliance and vulnerability management regulatory requirements (PCI DSS FFIEC).
  • Scripting automation API and data analysis experience using tools or languages such as Python PowerShell VBA Power Query SQL R or similar.
  • Experience with business intelligence reporting or analytics tools such as Power BI and Excel for validating reports analyzing trends and communicating actionable insights.
  • Practical familiarity with AI-enabled productivity or analysis tools coding assistants prompt-based workflows or tool orchestration in a professional setting.
  • Relevant security or technology certifications such as Security CySA CISSP cloud security certifications vulnerability management vendor certifications or equivalent practical experience.
Tools and Environment (Preferred)
  • Vulnerability management and scanning platforms such as Qualys Wiz or comparable enterprise vulnerability management tools.
  • External attack surface management tools exposure monitoring platforms and internet-facing asset discovery workflows.
  • Cloud and container environments including AWS Azure GCP Kubernetes container image lifecycle management and cloud workload security fundamentals.
Remote 1 year with possible extension Must haves: 3 plus years experience in vulnerability management - Qualys or Tenable or Nessus Description: The Vulnerability Management Analyst supports enterprise vulnerability operations by validating findings assessing risk coordinating remediation and help...