Vulnerability Management Analyst Resume Sample
Work Experience
- Years of Information Security Experience, working with Vulnerability management tools
- Demonstrated knowledge of Systems Administration/Engineering with proficiency in analyzing systems designs with a systems security mindset
- Strong knowledge of threats and vulnerabilities associated with cloud and on-premise network security
- Strong analytical and problem-solving skills and proactive thinking skills
- High-level familiarity with Vulnerability Management tools such as ACAS, SCAP, and SCCM
- Moderate- to high-level familiarity with RMF input and validation tools such as eMass and XACTA
- Basic level familiarity with DoD, USAF, USSOCOM, and other Cyber Security Regulatory Compliance bodies
- Familiarity with basic networking protocols (e.g., TCP/IP, UDP, etc.)
- Familiarity with basic concepts of Penetration Testing (e.g., Penetration Test Execution Standards (PTES, Black Box Pen Testing, etc.) to include use of the more popular tools (e.g., metasploit, Nmap, etc.)
- Oversee and/or perform the development, maintenance, and continual improvement of the vulnerability management platform, processes, and technical assessment support
- Drive automation of vulnerability management platform and processes
- Demonstrated understanding of infrastructure and cloud vulnerability scanning
- Understanding of how to classify and prioritize the risk of new vulnerabilities based on the operating environment
- Develop and maintain metrics and reports on vulnerability findings and remediation compliance
- Provide technical support to system and technology owners to propose mitigation and remediation solutions
- Assist with routine compliance and audit functions to ensure regulatory scanning requirements are satisfied
- Document and report on processes and procedures
- Provide input to leadership for enhancing the vulnerability management strategy
- Sense of urgency to address new technologies being deployed: Continuous development of infrastructure and cloud vulnerability expertise to function as subject matter expert in multiple technical or business disciplines
- A Cyber Security Team team-player contributing to policy development, RMF package accreditations, and Tempest requirements
- Demonstrated ability to work effectively in an ambiguous environment with Vulnerability Management tools such as ACAS, SCAP, and SCCM
- Performs network and application technical vulnerability assessments using vulnerability assessment tools
- Evaluates threats and vulnerabilities to determine and recommend safeguards for system or application owners
Education
Professional Skills
- Outstanding written and oral communication skills to include previous experience delivering presentations to senior leadership
- Excellent project management skills to include leading multiple projects simultaneously
- Excellent project management skills to include leading
- Excellent host/network troubleshooting, diagnostics, and problem/root cause analysis skills
- Excellent communication skills that can transcend both junior and senior audiences
- Solid reporting skills in various Office formats
- Great interpersonal skills and love for a team environment
How to write Vulnerability Management Analyst Resume
Vulnerability Management Analyst role is responsible for reporting, software, securities, training, integration, database, security, analysis, manufacturing, design.
To write great resume for vulnerability management analyst job, your resume must include:
- Your contact information
- Work experience
- Education
- Skill listing
Contact Information For Vulnerability Management Analyst Resume
The section contact information is important in your vulnerability management analyst resume. The recruiter has to be able to contact you ASAP if they like to offer you the job. This is why you need to provide your:
- First and last name
- Telephone number
Work Experience in Your Vulnerability Management Analyst Resume
The section work experience is an essential part of your vulnerability management analyst resume. It’s the one thing the recruiter really cares about and pays the most attention to.
This section, however, is not just a list of your previous vulnerability management analyst responsibilities. It's meant to present you as a wholesome candidate by showcasing your relevant accomplishments and should be tailored specifically to the particular vulnerability management analyst position you're applying to.
The work experience section should be the detailed summary of your latest 3 or 4 positions.
Representative Vulnerability Management Analyst resume experience can include:
- Strong verbal, communication, and diplomacy skills with all levels of the business on vulnerability issues
- Good analytical skills, attention to detail and ability to methodically troubleshoot complex issues
- Strong experience with data analysis, automation and scripting
- Demonstrated 1+ years of technical experience with the following techniques
- Strong experience in cyber security, vulnerability analysis, application development
- Demonstrated experience with technical development product milestone scheduling
Education on a Vulnerability Management Analyst Resume
Make sure to make education a priority on your vulnerability management analyst resume. If you’ve been working for a few years and have a few solid positions to show, put your education after your vulnerability management analyst experience. For example, if you have a Ph.D in Neuroscience and a Master's in the same sphere, just list your Ph.D. Besides the doctorate, Master’s degrees go next, followed by Bachelor’s and finally, Associate’s degree.
Additional details to include:
- School you graduated from
- Major/ minor
- Year of graduation
- Location of school
These are the four additional pieces of information you should mention when listing your education on your resume.
Professional Skills in Vulnerability Management Analyst Resume
When listing skills on your vulnerability management analyst resume, remember always to be honest about your level of ability. Include the Skills section after experience.
Present the most important skills in your resume, there's a list of typical vulnerability management analyst skills:
- Experience in information security or related technology experience
- Acquire industry recognized certification(s) to do his/her job more effectively
- Strong knowledge of Windows and one of the following operating systems; NIX, OS X, iOS, etc
- BS in a related discipline and 5+ years of Information Security Experience working with Vulnerability management tools and security testing
- Strong understanding of operating systems, network protocols, and applications development
- Excellent knowledge of tools related to identifying and remediating security vulnerabilities and patch management
List of Typical Experience For a Vulnerability Management Analyst Resume
Experience For Senior Vulnerability Management Analyst Resume
- Operate the firm’s vulnerability scanning program using industry standard tools for scanning and reporting application and infrastructure vulnerabilities
- Validate vulnerabilities using product documentation, alternate scanners, and pen testing tools
- Experience in working with the following
- Experience in analyzing and remediating vulnerabilities on networks and systems
- Experience implementing and maintaining Windows based application servers
- Performs penetration testing activities to demonstrate vulnerabilities and attack chains
- Experience with vulnerability analysis, assessments and remediation management
- Monitor key metrics and report on adoption and effectiveness of secure development practices
- Significant experience in information security and application security
Experience For Threat Vulnerability Management Analyst Resume
- Experience working with external teams to deliver and track solutions
- Validate remedial actions and ensure compliance with information security policy and regulatory requirements
- Provide security training and education for lesser-experienced staff
- Experience of administering Vulnerability Management
- Experience of network applications / operating systems / hardware
- Identify, analyze and prioritize discovered security exposures and follow up with IT staff to remediate findings
- Experience of desktop support
- Documenting and implementing an enhanced penetration testing program to cover testing of application and infrastructure systems for security vulnerabilities
Experience For Cybersecurity Vulnerability Management Analyst Resume
- Developing innovate security testing to mimic advanced persistent threat techniques and blended threats including social engineering, physical access gaps
- Assessing publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood and firm impact
- Understanding of vulnerabilities and remediation techniques
- Resolve operational issues, requiring an understanding of networking and server administration
- Provide support and resolution for scanning and vulnerability remediation reporting issues
- Knowledge of UNIX-based operating systems, including Red Hat/CentOS
- Script using Bash, Python, or other similar scripting languages
Experience For Threat & Vulnerability Management Analyst Resume
- Verify scans are running and completing successfully
- Publish patch bulletins detailing the information on vulnerability patches, timeline for patch deployment, risk and CVSS rating and other required details
- Assists in designing correction plans, mitigations, and full remediation actions
- Applies cyber security management where beneficial and uses a working knowledge to explain to stakeholders when traditional cyber security methods fail
- Knowledge of common networking, infrastructure or database concepts
- Network scanning tools (e.g. Nessus, RETINA, Tripwire, etc.)
Experience For SME Vulnerability Management Analyst Resume
- Schedule, monitor, and troubleshoot vulnerability scanning for internal customers
- Identify and resolve gaps related to Governance Risk Compliance integration and reporting
- Identify and manage asset scope for scanning operations
- Plan and perform cybersecurity vulnerability assessments using a threat based approach and recommend risk reduction actions
- Track and manage assessments performed directly and indirectly through third parties delivering results on time
- Develop and use cyber red team strategies for testing organizational security posture
- Understands and communicates attack chains to management and other stakeholders
Experience For Cnd Vulnerability Management Analyst Resume
- Utilizes penetration testing skills to conduct offensive security practices to gather deeper situational awareness, provide greater security insight of the environment, and assist Incident Response teams with training against advanced threats
- Helpful for candidates to have working knowledge and familiarity with; IT Security risk assessment; IT/IS policy development
- Develop and report appropriate metrics to measure and the monitoring program and related process
- Helpful to have knowledge of common software and web application vulnerabilities, such as the OWASP Top 10
- Soft skills such as the ability to build relationships, build consensus, negotiate solutions, guide customers through their decision process are highly desirable
Experience For Vulnerability Management Analyst Resume
- Familiar with DB Linux, UNIX, and Windows variants
- C, C++, C#, Java, ASM, PHP, PERL
- Security tools and products (Fortify, AppScan, etc.)
- Provide technical support for vulnerability management
- Assume responsibility for the NSOC’s execution of the DoD IAVM program and oversee and direct the activities for a team of support analysts
Experience For Senior Vulnerability Management Analyst Resume
- Articulate vulnerabilities and remediation to varied audience
- Align vulnerability and configuration mitigation functions with the organization's overall business objectives by reducing information technology's exposure to vulnerabilities
- Work closely with IT and Cyber peers to architect patching strategies for potential vulnerabilities ensuring information security policy and best-practices are enforced globally
- Work with internal business units to drive enterprise-wide patching efforts for approved third party software, manage expectations and set service level agreements
- Produce meaningful metrics and reports in accordance with direction from the Director of Vulnerability Management
- Participate in incident response activities as needed
- Knowledgeable in change management processes and participate in change control process as needed..Key Responsibilities
Experience For Threat Vulnerability Management Analyst Resume
- Be able to successfully partner with other security and IT professionals to assess potential impact from vulnerabilities specific to Allstate’s environment, and determine and implement mitigating controls
- Maintain and provide recommendations for continual improvement of vulnerability management infrastructure, initiatives, integration, processes, and technical assessment support
- Ensure successful execution of the vulnerability management process
- Classify and prioritize the risk of new vulnerabilities according to the specifics of our unique environment’s risk level, mitigating factors, and assessment of the impacts of internal and external threats
- Conduct application security tests utilizing manual pen testing techniques when applicable
- Provide input to the Vulnerability Management Team for enhancing the information security strategy
Experience For Cybersecurity Vulnerability Management Analyst Resume
- Lead integration of and ongoing support for tools and processes that support secure development
- Provide support and direct training to dev team members on SDL practices such as threat modeling, secure software design, use of static, dynamic and manual security testing tools, and guidance remediation of software vulnerabilities
- Monitor for and address new or changing support requirements from development teams
- Escalation point to review application threat models in conjunction with dev team security liaison
- Review and interpret Static and Dynamic test results in conjunction with dev team security liaison
List of Typical Skills For a Vulnerability Management Analyst Resume
Skills For Senior Vulnerability Management Analyst Resume
- Working knowledge and experience with Solaris Live Upgrade and Red Hat Yum updates
- Experience developing, managing and executing project plans
- Experience integrating security testing tools and processes into CI/CD – DevOps environments
- Demonstrated history of ‘owning’ a program of work and driving improvements with minimal management direction
- Experience developing and/or implementing network security solutions or projects in complex environments is desired
Skills For Threat Vulnerability Management Analyst Resume
- Experience with using Microsoft Office applications to create reports from data, including Excel, PowerPoint, and Word
- Experience with Service Now ticketing and reporting
- Experience with multiple operating systems, including Windows and Linux
- 3) Experience doing hands-on vulnerability scanning and remediation efforts
- Advanced knowledge and experience working in a security engineering or security operations team in a large enterprise
- Experience with vulnerability scanning tools, specifically QualysGuard
Skills For Cybersecurity Vulnerability Management Analyst Resume
- Cyber security experience specifically working in Vulnerability Management
- Demonstrated knowledge of OWASP and SANS testing methodologies, and related tools such as Qualys, Splunk, AlertLogic, nmap, etc
- Provide recommendations for remediation and collecting evidence to verify the vulnerability no longer exists
- Experience with vulnerability scanning tools, specifically
- Previous experience with system design integration planning and oversight for multiple large-scale installations
- Cripting experience (Perl, Ruby, or Python)
- Experience performing Unix/Linux system administration
- Five years’ experience in hands-on vulnerability and configuration scanning and mitigation can be substituted for a certification
Skills For Threat & Vulnerability Management Analyst Resume
- Experience working with cloud technology (e.g. AWS, Cloud Foundry)
- Experience supporting appsec in cloud environments
- Experience creating threat models, “evil” user stories, security design requirements
- Experience integrating SDL controls into Agile SDLC processes
- Hands-on experience with scanning tools
- Knowledge and experience of Microsoft Excel, SQL and BI reporting tools
- Experience managing large infrastructure related upgrade & deployment projects across a global, highly matrixed organization
- Experience leveraging a variety of patch management tools, like Ivanti, WSUS and SCCM
- Experience with system administration for Windows and Linux operating systems
Skills For SME Vulnerability Management Analyst Resume
- Experience with Tenable Nessus, eEye Retina, NMAP, or other network scanning tools
- Experience with commercial vulnerability scanning solutions such as Nessus, Nexpose, and Qualys
- Experience with Tenable Nessus, eEye Retina, NMAP, or other network scanning tools
- Strong understanding of enterprise technologies, architectures, operations and protocols, and willingness to learn new technologies
- Experience in leveraging enterprise vulnerability management tools for vulnerability remediation
Skills For Cnd Vulnerability Management Analyst Resume
- Experience working with vulnerability findings from vulnerability scanners
- Significant enterprise vulnerability management experience
- Server administration experience to support and provide guidance
- Information security technology experience
- Strong knowledge of security algorithms, protocols and standards
- Demonstrated knowledge of TCP/IP protocols, network analysis, and network/security applications
- Run the entire vulnerability lifecycle; timelines, phases, and record evidence when needed
- Understanding of cloud security
- Understanding of ITIL principals.; ITIL v3 Certification Certified is desired
Skills For Vulnerability Management Analyst Resume
- Working knowledge of Solaris and Linux (Oracle and Red Hat)
- Understanding of OWASP Top 10 and SANS Top 20 Critical Controls
- Understanding of industry standards such as CVE, CPE and CVSS
- Knowledge of TCP/IP and other common networking concepts and protocols, including routing, DNS, and tunneling
- Deep understanding of how applications, networking, operating systems, and databases work
- Penetration testing, application testing, running a vulnerability program of large size
- Expert knowledge in working with leading vulnerability scanning and management tools, specifically Qualys
- Strategic program building - making sure the program is well aligned
- To make a positive contribution to housekeeping
Skills For Senior Vulnerability Management Analyst Resume
- Broad understanding of systems administration principals
- General technical background (understanding of industry standard technical terms)
- Vulnerability Scanning Tools - ACAS, SCAP or SCCM
- Conduct vulnerability scans at the network, operating system, database, and application levels on financial systems within this organizations enterprise
- Perform vulnerability scanning and analysis to eliminate false positives and to aggregate findings by specific best practice criteria
- Plan and organize work and interact with technical and non-technical personnel translating user requirements into responsive applications
- Maintain and encourage positive working behaviours in others and self
Skills For Threat Vulnerability Management Analyst Resume
- Detailed understanding and knowledge of complex regulatory requirements and internal security standards and policies and how they apply to day to day
- Advanced understanding of security principles
- Knowledge in Service Center and/or other ticketing tools
- Follow standard operating procedures (SOPs) and complete assigned tasks with minimal supervision
- Technical Certifications, including Security+, CISSP, or CEH
Skills For Cybersecurity Vulnerability Management Analyst Resume
- Follow standard operating procedures (SOPs) and complete assigned tasks with minimal supervision
- Expert knowledge in working with governance, risk and compliance tools, in highly complex, large and highly regulated environment
- Provide recommendations on improving the security posture of the client’s enterprise
- Coordinate the activities of vulnerability and configuration scanning and mitigation
- Well rounded in information and IT systems
- Flexible, organized, and passionate about advanced cyber security
List of Typical Responsibilities For a Vulnerability Management Analyst Resume
Responsibilities For Senior Vulnerability Management Analyst Resume
- Hands-on experience working with vulnerability scanning tools
- Experience with security testing proxies, port scanners, vulnerability scanners, exploit frameworks
- Strong proficiency in Microsoft Office 2016. This includes the ability to manipulate and analyze raw data in applications like Excel and Access
- Strong knowledge of Qualys OR Nessus
- Experience with vulnerability management, Cybersecurity operations, or other related areas
- Develop and refine security assessment models including remediation monitoring activities
- Research new threats, vulnerabilities, exploit techniques and develop new methods of testing new threats
Responsibilities For Threat Vulnerability Management Analyst Resume
- Monitor the threat feeds for the security vulnerability patches, assess and rate the security patches affecting the network infrastructure
- Develop and maintain python scripts used to automate the drafting of the patch bulletins
- Implementation and support of network operating systems and services
- Support local manufacturing systems
- Provide training to user community as required
- Manages, administers and continually tunes the vulnerability scanning tool
- Aligns scanning data sources and data elements in the GRC to track and score our current state to the HiTrust CSF and risk register
- Delivers dashboards and reports to a wide audience demonstrating our current program state and adherence to framework standards
Responsibilities For Cybersecurity Vulnerability Management Analyst Resume
- Recommends, coordinates and implements technical controls to ensure policies and processes are performing as intended
- Collaborate with peers at other Tech Hubs and management to ensure global consistency of approach and execution of secure software development practices
- Provide consultancy to customers and develop technical documentation, including functional specifications, system design specifications and standard operating procedures (SOPs) as necessary
- Provide technical support for vulnerability management projects
- Develop and mature operations in support of overall tool strategy
- Research company exposure to vulnerabilities
- Work with various risk teams to identify the top vulnerability risks to the company
- Configure and run scans and reports to identify vulnerabilities
Responsibilities For Threat & Vulnerability Management Analyst Resume
- Produce remediation plans for vulnerabilities
- Coordinate cross functional teams to execute against remediation plans
- Provide reports, pitches, and status updates on all activities
- Works with GE businesses to define key risk indicators and key performance indicators
- Prioritize threats and high risk assets based on impact to the business and recommend remediation prioritization plan for cybersecurity vulnerability assessments
- Develop communications and present to key shareholders for assessments
Responsibilities For SME Vulnerability Management Analyst Resume
- Collaborate with Pfizer technology teams to improve both the effectiveness of the vulnerability management program and the improve the security posture of Pfizer
- Performing security assessments
- Maintain awareness of industry frameworks and best practices: Threat Modeling, OWASP, SANS Security Model
- Analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
- BS in Computer Sciences, Information Systems, or related field
Responsibilities For Cnd Vulnerability Management Analyst Resume
- Serve as vulnerability management analyst for information systems as primary responsibility
- Facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
- Coordinate Security patching processes
- Engage with stakeholders, to include IT professionals, management, and auditors, to facilitate vulnerability discovery and remediation
- Recommend appropriate remedial actions to mitigate risks and ensure information systems employ appropriate level of information security controls
Responsibilities For Vulnerability Management Analyst Resume
- Strong knowledge industry standards regarding vulnerability management including Common Vulnerabilities and Exposures (CVE),Common Vulnerability Scoring System (CVSS) and Open Web Application Security Project (OWASP)
- Develop and maintain python scripts used to aggregate, normalize, and stage data to be used for data visualization, KRI’s, KPI’s, and other reporting
- Responsible for delivering security analytics reports across the organization
- Configure scanning options and schedules
- Notification to operational and business teams of scanning schedules
- Distribute reports to Project Managers, Account Security Officers, Hosting Tower Managers, etc
- Build relationships with various IT and LAB teams within HPE and engage in remediation activities
- Develop fix-it guilds for specific vulnerabilities across various products such as RHEL, Windows & HP-UX
- Configure and run internal and external vulnerability scans
Responsibilities For Senior Vulnerability Management Analyst Resume
- Familiarity with TLS and SSL protocols
- Perform network vulnerability assessments to identify vulnerabilities or confirm compliance to security standards
- Provide operational analysis of vulnerabilities and threats to information systems
- Find reasonably foreseeable internal and external threats that could result in unauthorized disclosure, misuse, alteration or destruction of data or systems
- Develop possible near term and long-term vulnerability mitigation strategies and actions
- Create and execute threat and vulnerability management procedures
- Maintain proficiency in the threat and vulnerability best practices
- Interact with Senior Management, Incident Response and Risk Management teams to provide security assessments, security gap-analysis, audit reports and recommendations
Responsibilities For Threat Vulnerability Management Analyst Resume
- Communicate security and compliance issues to management, end users, and security experts in an effective and appropriate manner
- Assist in incident response and analysis of potential breaches of Enterprise Security
- Develop, document and implement data security procedures that enforce information security standards
- Create security project schedules and documentation as needed
- Expert understanding of performing network based vulnerability scans using Nessus or other related tools - QualysGuard, Nexpose, McAfee Scanner, BMC BladeLogic and Imperva SecureSphereDatabaseSecurity tools or equivalent
Responsibilities For Cybersecurity Vulnerability Management Analyst Resume
- In-depth understanding of various types of network & web based attacks and remediation. Familiarity with well-known vulnerabilities and exploits
- Self-starter, ability to work independently with minimal supervision and as part of a team
- Work with stakeholders to
- Troubleshoot network connectivity issues for the scanners
- Make updates and changes to schedules