Enterprise Security Posture Management Analyst

Job Summary The Enterprise Security Posture Management Analyst will oversee the identification, assessment, and mitigation governance of vulnerabilities and configuration weaknesses across on-premises, cloud, and hybrid environments to ensure robust security posture and compliance. This role involves management of proactive scanning, risk prioritization, and reporting. This role also involves coordination of penetration testing activities against both external & internal infrastructure and Internet-facing web applications. The analyst will also need to collaborate with IT engineering and development team regarding remediation efforts for all findings. The ideal candidate will have outstanding communication skills and drive automation & process improvements to address emerging threats. Key Responsibilities Conduct continuous vulnerability assessments and verify appropriate coverage is maintained across on premises and cloud environments. Perform configuration reviews to detect and prioritize risks in networks, systems, applications, and cloud infrastructures. Detect, report, and provide oversight over end-of-life hardware and software. Enrich vulnerability data with threat intelligence, perform risk assessments, and manage escalations for critical issues, including zero-day vulnerabilities. Continually improve vulnerability and configuration management programs, including policies, procedures, and tools for continuous monitoring and remediation capabilities. Coordinate remediation efforts with cross-functional teams, ensuring timely patching, configuration hardening, and mitigation strategies to reduce attack surfaces. Create and maintain metrics, dashboards, and reports on trends, remediation progress, and program effectiveness for senior leadership. Drive automation initiatives for scanning, reporting, and compliance checks to enhance efficiency and scalability. Stay updated on industry trends, emerging threats, and best practices, recommending enhancements to security controls and tools. Management Responsibilities Preferred Qualifications Qualifications Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field or equivalent experience. All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations. Experience: 6+ years of experience in cybersecurity, with at least 3-5 years focused on vulnerability and configuration management. Proven experience managing vulnerability programs in on-premises, cloud (e.g., AWS, Azure, GCP), and hybrid environments. Track record of leading security assessments, tool implementations, and cross-team collaborations in enterprise settings. Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent are highly desirable. Minimum Qualifications All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations. Certifications Skills Proficiency with vulnerability scanning and management tools like Qualys, Nessus, Tenable, Rapid7, or similar platforms. Strong knowledge of configuration management standards and Cloud Security Posture Management (CSPM). Excellent communication skills to explain risk to both technical and non-technical audiences and influence leaders across IT and the business. Analytical skills for risk assessment, data enrichment, and trend analysis. Curiosity to dig for root causes and find creative solutions to complex problems. Experience with scripting and automation languages (e.g., Python, PowerShell) for process optimization and integration. Familiarity with threat intelligence, incident response, and security operations in fast-paced environments. Work Environment/Physical Demands Competencies Salary Plan ITS: Information Technology Service Job Grade 016 BVH, Inc., its subsidiaries and its affiliated companies, complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Black & Veatch does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status, pregnancy status or other status protected by law. Black & Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe and healthy. We offer professionals an array of health and welfare benefits that vary based on their geographic region and employment status. This may include health, life accident and disability insurances, paid time off, financial programs and more. Professionals may also be eligible for a performance-based bonus program. By valuing diverse voices and perspectives, we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients.