Responsibilities

• Perform scheduled and ad-hoc vulnerability scans using VMS
• Validate remediation of vulnerabilities identified by VMS
• Analyze scan results, validate findings, and eliminate false positives
• Prioritize vulnerabilities based on CVSS scores and organizational risk context
• Coordinate with system owners to validate fixes, perform rescans, and ensure closure within SLA timelines
• Track remediation progress and generate regular vulnerability reports
• Track compliance with patching SLAs
• Perform host configuration reviews(e.g., CIS benchmarks)
• Maintain and update scan policies, plugins, and configurations
• Monitor security events and logs using Splunk
• Develop and fine-tune search queries, dashboards, and alerts
• Perform log reviews to identify anomalies, suspicious patterns, and threats
• Correlate logs across multiple sources (servers, firewalls...