Monday, April 9, 2018

Security & Risk Analyst

Job Title: Security & Risk Analyst - III
Location: San Mateo, CA-94404
Duration: 6+ Months Possible extension

Onsite 5 days per week
Phone Screen followed by an Onsite/Skype Interview
Pharma experience is a nice to have but not required.

Position Summary:
  • The Vulnerability Security Engineer is a key member of the vulnerability management development team and works closely with Infrastructure and Application services teams to develop a process to ensure that all applications and systems will be patched and configured in accordance with policies, standards, and compliance requirements so that risk is managed appropriately. The candidate will assist with developing and implementing the desired end state of the Information Security and Privacy programs.
Essential Job Functions:
  • Evaluate, design, develop, implement and / or integrate security solutions which may include, but are not limited to Vulnerability Management, Server Configuration / Compliance Monitoring, Endpoint Configuration / Compliance Monitoring
  • Assist a team in designing and implementing an end to end vulnerability management process
  • Assist in deploying and configuring a test environment and procedures
  • Writing project documentation, position papers, etc. Must be able to work with project stakeholders to build appropriate business processes as part of the project lifecycle.
  • Assists in the testing of controls and the remediation of any deficiencies identified.
  • Assist in formalizing and updating security policies, procedures and technical standards and auditing/monitoring compliance with those standards.
  • Assist in developing vulnerability reports for tailored for specific operational teams and process functions.
Required Skills & Job Qualifications:
  • Minimum 3 years of progressively responsible IT experience with at least 1 years of security/infrastructure protection experience.
  • Strong verbal and written communication skills with the ability to adapt information delivery based on the target audience
  • Ability to work in a fast paced, highly visible, changing environment.
  • Proven track record in enterprise vulnerability management
  • Must be familiar with the following vulnerability management technologies:
  • WSUS, SCCM, Red Hat Satellite, Nexpose
  • Proven ability at building working relationships with partners, peers, and senior Management
  • Excellent analytical and problem solving skills.
  • Ability to multitask and manage multiple topics and demands concurrently
  • Working knowledge of IT processes (i.e., ITIL) including incident, problem, defect, change and release management
  • Working Knowledge of Windows systems, Active Directory, and Linux Systems
  • Prior working experience in a Pharmaceutical company is a big plus
  • Highly organized, results-oriented and attentive to details
  • Self-motivated, proactive, independent and responsive – requires little supervisory attention
  • Excellent presentation, facilitation and diplomacy skills
  • High level of personal integrity consistent with Gilead’s core values
  • Performs other duties as assigned.
  • Looking for someone who can look at a Vulnerability report-understand it, and explain to other people  guidance on next steps ( Correct tool, change what they are doing, etc. )
  • Communication skills are a must.
  • OS vs. Network Experience.
  • Familiar with Redhat, Nexpose.
Education & Certification
  • Bachelor of Science degree in management information systems, computer science, engineering or other IT-related major is required
  • Information Security Certification (CISSP, GSEC, etc…) or other related security certification is highly desired
  • Microsoft, Linux, Unix, and Cisco certifications would be an asset
Monika Gupta | Sr. Technical Recruiter |  TalentBurst, Inc.
Boston | San Francisco | Miami | Milwaukee | Toronto | New Delhi | Bangalore
Work: (508) 628-7567| Fax: (508) 319-3065
679 Worcester Road | Natick, MA 01760