Job Title: Vulnerability Management Analyst
Location: Montreal, Quebec (Hybrid Role)
Contract Duration: 1 Year
Overview: We are seeking an experienced Vulnerability Management Analyst to join our dynamic Cyber Data Risk & Resilience organization. The successful candidate will contribute to the Attack Surface Management (ASM) efforts, addressing external scan findings and collaborating with third-party cybersecurity ratings agencies to prioritize and escalate vulnerabilities. This role demands a proactive approach to ensuring vulnerabilities are effectively remediated and reported.
Key Responsibilities:
- Analyze external scan findings and engage with third-party cybersecurity ratings agencies.
- Escalate critical vulnerabilities and initiate remediation requests, ensuring adherence to established procedures.
- Evaluate CVSS (Common Vulnerability Scoring System) scores and apply them to vulnerability assessments.
- Identify and de-duplicate reported issues from multiple sources to streamline the escalation process.
- Collaborate across teams to maintain a consistent approach to vulnerability management.
- Generate comprehensive reports leveraging enterprise reporting platforms (preferably Splunk).
Desired Characteristics and Skills:
- Experience: 3-5 years in a technology role, ideally with a background in technology risk management.
- Technical Proficiency: Strong understanding of vulnerabilities, CVSS scoring, and adherence to process and procedural standards.
- Networking Knowledge: Familiarity with TCP/IP, web applications, and understanding the interactions between technology layers and services.
- Tools Experience: Proficiency in enterprise reporting platforms, with a preference for Splunk.
- Soft Skills: Excellent organizational, communication, and professional skills to collaborate effectively within a team and across departments.
