Vulnerability Management SME

• Experience as a Vulnerability Analyst
• Understanding of Vulnerability Management principles
• Understanding of Risk Assessment Methodologies
• Knowledge of industry standard scoring models such as CVSS (Common Vulnerability Scoring System) or CCSS (Common Configuration Scoring System)
• Knowledge of industry standard data models such as CPE (Collection Processing Engine) and data normalization tools
• Process oriented with keen attention to detail
• Knowledge of common vulnerabilities, attack vectors and mitigation techniques
• Ability to proactively anticipate problems and execute solutions at a strategic level
• Wide knowledge of application and IT products, interoperability, and extensive knowledge of IT security
• Knowledge of application development platforms
• Knowledge of vulnerability attack methods, exploit results, attack chains
• Ability to think strategically
• Active involvement in internal and external audits and experience of managing Audit relationships.
• A bachelors degree in computer sciene, cybersecurity or a related field

Desired but not necessary:

• Qualys Cloud Portal experience
• Experience in cloud security, preferably with Azure / Oracle Cloud Infrastructure
• Knowledge of cloud security frameworks, tools and technologies
• Experience with DLP (Data Loss Prevention) such policy creation and management, workflow and approval.