Qualys Engineer

This job has now expired please search on the home page to find live IT Jobs.

Spring Technology is currently looking for an experienced Qualys Engineer. This is a 12 Month contract based in London.

Responsibilities

The Qualys engineer position is part of the Cyber Security program In TP ICAP. The Qualys engineer will work with the security engineering team and act as a vulnerability an policy management subject matter expert. The Qualys Engineer will have scanning experience on AWS platform, API development experience, will develop automated processes for handling vulnerability and policy configuration data along with automated security metrics. The Qualys Engineer will be responsible for providing recommendations to streamline the vulnerability reporting process. The Qualys engineer will provide recommendations for remediation actions and suggestions for implementing best practices and improving standard processes and procedures in line with industry standards such as CIS and NIST

Duties:

* Automation of vulnerability management metrics

* Creating custom configuration of Qualys features

* Act as the central point of contact for Qualys Vulnerability Management and Policy Compliance

* Create and present assessment reports to management

* Participate in status calls with stakeholders

* Develop and execute vulnerability patching strategy

* Develop and execute policy configuration remediation strategy

* Managing monthly vulnerability and policy compliance scanning on premise and in AWS cloud.

* Work with minimal supervision as an individual contributor and as part of the team

* Continue to learn more about the ever changing Information Security world, and be flexible as the program evolves

* Develop internal and/or external documentation, such as detailed procedures, playbooks, and operational metrics reports

* Other duties as Assigned

Qualifications

Required Experience and Skills:

*7+ years of experience in a hands-on technical security engineering role focused on vulnerability management with extensive use of Qualys

*Experience with security automation

*Experience designing and implementing scanning architecture in an enterprise environment

*Qualys Cloud Agent, Cloud View, Policy Management experience of deployment and usage.

*Qualys API programming experience.

*Experience creating custom configurations within Qualys

*Experience with vulnerability scanning, and understands how to analyze discovery scan data and vulnerability data to determine unusual use configurations, discovery of aged software, and proper identification of high-severity vulnerabilities

*Experience with policy compliance assessment of CIS controls establishing policies that include mandatory and optional configuration.

*Must have background, experience, and understanding of networking and network security technologies such as Firewalls, IDS/IPS, Proxies, Content Filtering, Application security, SIEM and Log, monitoring/management, Vulnerability Management, Risk and Compliance

*Exposures in IT security baseline and procedures development

*Experience in IT regulation and compliance standards, such as NIST and CIS.

*Strong analytical and problem solving skills and the ability to "think-out-of-the-box"

Please send your CV now to apply !

Spring Technology acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.

By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser: www.spring.com/candidate-privacy-information-statement