Enterprise Security Posture Management Analyst

We believe real value is powered by the unique skills and experiences of our professionals The interchange of ideas from a diverse group of people gives our teams an expanded perspective and the ability to find better solutions for our clients Req Id 112202 Job Title Enterprise Security Posture Management Analyst Business Unit sector CPL-BECIO-CIO Department BVCPL DIGITAL OFFICE Work Location INPUNE Opportunity Type Staff Relocation eligible Yes Full time Part time Full-Time Contract Hire Only for this Project No Visa Sponsorship Available No Recruiter Indranee Bindu Job Summary The Enterprise Security Posture Management Analyst will oversee the identification assessment and mitigation governance of vulnerabilities and configuration weaknesses across on-premises cloud and hybrid environments to ensure robust security posture and compliance This role involves management of proactive scanning risk prioritization and reporting This role also involves coordination of penetration testing activities against both external internal infrastructure and Internet-facing web applications The analyst will also need to collaborate with IT engineering and development team regarding remediation efforts for all findings The ideal candidate will have outstanding communication skills and drive automation process improvements to address emerging threats Key Responsibilities Conduct continuous vulnerability assessments and verify appropriate coverage is maintained across on premises and cloud environments Perform configuration reviews to detect and prioritize risks in networks systems applications and cloud infrastructures Detect report and provide oversight over end-of-life hardware and software Enrich vulnerability data with threat intelligence perform risk assessments and manage escalations for critical issues including zero-day vulnerabilities Continually improve vulnerability and configuration management programs including policies procedures and tools for continuous monitoring and remediation capabilities Coordinate remediation efforts with cross-functional teams ensuring timely patching configuration hardening and mitigation strategies to reduce attack surfaces Create and maintain metrics dashboards and reports on trends remediation progress and program effectiveness for senior leadership Drive automation initiatives for scanning reporting and compliance checks to enhance efficiency and scalability Stay updated on industry trends emerging threats and best practices recommending enhancements to security controls and tools Management Responsibilities Preferred Qualifications Qualifications Bachelor s degree in Computer Science Information Security Cybersecurity or a related field or equivalent experience All applicants must be able to complete pre-employment onboarding requirements if selected which may include any all of the following criminal civil background check drug screen and motor vehicle records search in compliance with any applicable laws and regulations Experience 6 years of experience in cybersecurity with at least 3-5 years focused on vulnerability and configuration management Proven experience managing vulnerability programs in on-premises cloud e g AWS Azure GCP and hybrid environments Track record of leading security assessments tool implementations and cross-team collaborations in enterprise settings Relevant certifications such as CISSP CISM CEH GIAC or equivalent are highly desirable Minimum Qualifications All applicants must be able to complete pre-employment onboarding requirements if selected which may include any all of the following criminal civil background check drug screen and motor vehicle records search in compliance with any applicable laws and regulations Certifications Skills Proficiency with vulnerability scanning and management tools like Qualys Nessus Tenable Rapid7 or similar platforms Strong knowledge of configuration management standards and Cloud Security Posture Management CSPM Excellent communication skills to explain risk to both technical and non-technical audiences and influence leaders across IT and the business Analytical skills for risk assessment data enrichment and trend analysis Curiosity to dig for root causes and find creative solutions to complex problems Experience with scripting and automation languages e g Python PowerShell for process optimization and integration Familiarity with threat intelligence incident response and security operations in fast-paced environments Work Environment Physical Demands Competencies Salary Plan ITS Information Technology Service Job Grade 016 BVH Inc its subsidiaries and its affiliated companies complies with all Equal Employment Opportunity EEO affirmative action laws and regulations Black Veatch does not discriminate on the basis of age race religion color sex national origin marital status genetic information sexual orientation gender Identity and expression disability veteran status pregnancy status or other status protected by law Black Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged productive safe and healthy We offer professionals an array of health and welfare benefits that vary based on their geographic region and employment status This may include health life accident and disability insurances paid time off financial programs and more Professionals may also be eligible for a performance-based bonus program By valuing diverse voices and perspectives we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients