- Conduct regular vulnerability assessments using organizational identified Vulnerability Management tools of choice to identify security weaknesses in our systems, applications, and network.
- Collaborate with cross-functional teams to prioritize and remediate vulnerabilities based on risk assessment.
- Develop and maintain Vulnerability Management processes and procedures.
- Monitor security alerts and advisories related to vulnerabilities.
- Provide recommendations for improving security posture based on vulnerability findings.
- Assist in creating and maintaining vulnerability dashboards and reports.
- Evaluate risk related to vulnerabilities and prioritize remediation strategy inline with MAXAR policy and standards.
- Assist in improving and automating existing Vulnerability Management lifecycle.
- Perform recurring and on demand scanning activities of both corporate and cloud environments utilizing enterprise platform.
- Present vulnerability results in appropriate dashboards, reports, and forward to other data owners as necessary.
- Assist in providing support and resolution for scanning and vulnerability remediation reporting issues.
- 401K matching and immediate vesting schedule
- Career growth opportunities
- Family friendly benefits like maternity and paternity leave, adoption reimbursement, flexible hours, hybrid work options
- Programs to help you grow like tuition reimbursement, hackathons, and career development
- Student loan repayment
- Generous time off
- Comprehensive medical, dental and vision at affordable monthly rates
- Must be a U.S. Citizen
- 2 years' experience in a Vulnerability Management related role, such as supporting Vulnerability assessment scans and collaborating against zero-day threats and critical vulnerabilities
- Proficiency in analyzing scan results, identifying false positives, and prioritizing vulnerabilities.
- Strong understanding of common vulnerabilities (CVEs) and their impact
- Bachelor of Science is preferred, with a focus on information security or related disciplines
- Relevant certifications (e.g., Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH)), CompTIA Advanced Security Practitioner (CASP+), CompTIA Cybersecurity Analyst (CySA+), CompTIA Pentest+, or GIAC-* certs are a plus
- Working knowledge of Information Security best practices, policies, standards, and baselines, including industry standards and guidelines from NIST, CIS, and OWASP
- Strong communication, collaboration, and analytical skills
- Experience with Qualys VM modules, Tenable Nessus, or similar Vulnerability Management tools
- Experience with Wiz.io or similar cloud security tools
- Experience with Wireshark, NMap or similar network analyzer/network scanner tools
- Understanding of cloud technologies such as AWS
- Familiarity with Linux and Windows command-line tools
- Ability to analyze vulnerability findings and prioritize using severity, CVSS Score, or other applicable rating systems
- Technical working experience/knowledge of operating systems, databases, web applications, cloud services, middleware, and other computing devices/software components
- Strong communication and collaboration skills
Maxar employees must follow all applicable Maxar policies and COVID-19 requirements as well as those of Maxar customers and third parties. Individual job requirements may vary, and Maxar reserves the right to modify its policies and requirements as it deems appropriate in accordance with applicable law.