Job Description
Tracking new and emerging threats and vulnerabilities, verifying their applicability, and initiating remediation activities as necessary
Analyzing assessment reports provided by vendors or third parties and resolving them within defined SLAs
Developing remediation plans by collaborating with infrastructure and application owners
Providing guidance on patching, configuration settings, and additional security controls
Defining the scope of assessment activities across internal and partner organizations
Designing and delivering actionable information security dashboards and metrics
Creating awareness about good security practices and the benefits of Secure SDLC programs
Prioritizing vulnerabilities based on risk and driving them to closure using tools like Qualys, Skybox, and SecOps