← Back to jobs
United States
No related jobs found
Job Responsibilities
Technical Expertise:
● Privileged Access Management (PAM):
○ Strong proficiency with Delinea's Thycotic Secret Server/BeyondTrust.
○ Demonstrated knowledge of Active Directory and networking.
○ Thorough understanding of identity lifecycle management for privileged and user accounts.
● Exposure Management:
○ Extensive experience with Tenable and Wiz.
○ Proficient in executing various scans (daily, weekly, ad-hoc, monthly), including PCI Compliance, Web Application Scanning, Vulnerability Management, Attack Surface Management, and Identity Exposure.
○ Proven ability to coordinate vulnerability remediation efforts with asset owners (identified through Tenable/Wiz/Google Mandiant).
● Digital Certificates (DigiCert):
○ General understanding of digital certificate concepts.
● Access Reviews:
○ Privileged Access Reviews: Familiarity with Google Sheets and Mail Merge, along with a general understanding of Active Directory fields (e.g., nested groups, disabled/expiring accounts, Organizational Units).
○ AD Termination Reviews: Familiarity with Google Sheets and VLOOKUP commands, and a general understanding of Active Directory fields (e.g., disabled/expiring accounts, Organizational Units).
● Security Scorecard - Ground level work experience on issues like:
○ P1 Issues (Critical):
■ Ransomware infection detected.
■ Domain advertised as a ransomware victim.
■ Malware controller observed or malware infection.
■ Phishing infrastructure.
■ Alleged breach incident.
■ Anonymous open proxy.
■ Products susceptible to ransomware exploits exposed.
○ P2 Issues (High):
■ DB or RDP services exposed to the Internet.
■ Certificate revoked/expired.
■ SSH software supporting vulnerable protocols or weak ciphers/MACs.
■ SSL/TLS service supporting weak protocols or cipher suites.
■ End-of-Life (EOL) OS/Software.
■ Critical/High-Severity CVSS v3.0 Vulnerabilities.
■ Site not enforcing HTTPS.
■ FTP/Telnet/rsync/VNC/SMB/PPTP services detected.
■ Adware installation.
■ Missing SPF record.
○ P3 Issues (Medium/Low):
■ Certificate lifetime exceeding best practices or without revocation control.
■ Malformed SPF record or SPF record containing a softfail without DMARC.
■ Medium/Low-Severity CVSS v3.0 Service Vulnerabilities.
■ Missing Content Security Policy (CSP).
■ Insecure HTTPS redirect pattern or redirect chain containing HTTP.
■ Website not implementing HSTS best practices
Bachelor's degree
No related jobs found
← Back to jobs