What are the responsibilities and job description for the Senior Vulnerability Management Analyst position at Uniplus Consultants Inc?
Senior Vulnerability Management Analyst
Tasks & Duties:
Objective:
o To ensure continuous monitoring, auditing, and remediation of security risks affecting DSS infrastructure components being migrated, decommissioned, or integrated within the hybrid environment, maintaining agency security posture during the transition.
Scope:
o Scan and Assess agency assets in all locations and environments that are part of he DC migration project.
o Execute vulnerability scans for migrating systems, validate risk scores, and recommend remediation for in-scope hardware/software.
o Develop and maintain dashboards in Rapid7 tailored for tracking migration-phase vulnerabilities.
o Script and automate vulnerability reporting across all locations and environments.
Tasks Breakdown:
o Perform vulnerability & exposure management scanning on devices.
o Conduct a comprehensive risk assessment of the current environment to identify and document potential vulnerabilities associated with this migration.
o Categorize and prioritize data based on its sensitivity to tailor security controls, accordingly, employing methods like encryption for sensitive data both at rest and in transit.
o Create a detailed inventory of all IT assets slated for migration, including applications, databases, servers, and network devices.
o Map dependencies between applications and infrastructure components to maintain functionality and minimize security risks during and after the migration.
o Conduct thorough security audits and vulnerability assessments after the migration to identify and address any newly emerged vulnerabilities in the new environment.
o Interpret CVE data to prioritize threats in live & staged environments.
o Document for auditability and incident prevention related to the data migration effort.
o Script PowerShell tools to automate asset reclassification and reporting