Vulnerability Management Integration Engineer (Brinqa)
Apply NowCompany: Romack
Location: West Babylon, NY 11704
Description:
Remote - EST
Must Have Brinqa configured and optimization experience.
Responsibilities
Post MVP (initial baseline onboarding); tasks to include working with Security Vendors and Internal teams to ensure Brinqa platform is configured and optimized; specific tasks could include:
o Onboarding additional data sources:
Tanium
AWS Inspector
GCP/AWS Asset Data
GCP
Azure
HackerOne
OnSpring
InfoBlox
Verizon NWPT Findings
Synopsys Pen Test Findings
Consolidation and normalization to build unified inventory
Contextualize and enrich data with business context and threat intelligence
Organize data into logical groups based on client reporting needs
Adjust prioritization by turning risk factors based on client SLA
Enable remediation with ticketing automation
Configure dashboards and advanced analytics
Documentation and team knowledge transfer
Develop and maintain playbooks for automated vulnerability data ingestion, normalization, and prioritization within VM tool(s), ensuring data consistency across all sources, including cloud workloads and data center assets
Analyze threat intelligence feeds and update VM configurations to prioritize vulnerabilities based on exploitability and real-world threats, reflected within the vulnerability aggregation platform and considering both cloud-specific and data center-specific risks
Collaborate with security engineers, cloud architects, IT operations teams, and data center administrators to ensure smooth integration and data exchange between cloud vulnerability scanning solutions, data center vulnerability scanners, and other security tools
Create and maintain reports on vulnerability trends, remediation progress, and overall program effectiveness using VM reporting capabilities, incorporating data from cloud-based scans, data center scans, and the vulnerability aggregation platform(s) for a comprehensive view on a weekly (or biweekly) basis as requested.
Stay up-to-date on the latest vulnerability management best practices, emerging threats, new features of vulnerability aggregation platforms (Brinqa, and similar platforms), and security considerations for both cloud and data center environments
Assist with the development and implementation of vulnerability management policies and procedures, including those specific to cloud and data center environments
Work with cross functional teams on priority vulnerability tracking and remediation follow up
Develop ITSM Ticketing Workflows for Ownership Updates and other use cases
Must Have Brinqa configured and optimization experience.
Responsibilities
Post MVP (initial baseline onboarding); tasks to include working with Security Vendors and Internal teams to ensure Brinqa platform is configured and optimized; specific tasks could include:
o Onboarding additional data sources:
Tanium
AWS Inspector
GCP/AWS Asset Data
GCP
Azure
HackerOne
OnSpring
InfoBlox
Verizon NWPT Findings
Synopsys Pen Test Findings
Consolidation and normalization to build unified inventory
Contextualize and enrich data with business context and threat intelligence
Organize data into logical groups based on client reporting needs
Adjust prioritization by turning risk factors based on client SLA
Enable remediation with ticketing automation
Configure dashboards and advanced analytics
Documentation and team knowledge transfer
Develop and maintain playbooks for automated vulnerability data ingestion, normalization, and prioritization within VM tool(s), ensuring data consistency across all sources, including cloud workloads and data center assets
Analyze threat intelligence feeds and update VM configurations to prioritize vulnerabilities based on exploitability and real-world threats, reflected within the vulnerability aggregation platform and considering both cloud-specific and data center-specific risks
Collaborate with security engineers, cloud architects, IT operations teams, and data center administrators to ensure smooth integration and data exchange between cloud vulnerability scanning solutions, data center vulnerability scanners, and other security tools
Create and maintain reports on vulnerability trends, remediation progress, and overall program effectiveness using VM reporting capabilities, incorporating data from cloud-based scans, data center scans, and the vulnerability aggregation platform(s) for a comprehensive view on a weekly (or biweekly) basis as requested.
Stay up-to-date on the latest vulnerability management best practices, emerging threats, new features of vulnerability aggregation platforms (Brinqa, and similar platforms), and security considerations for both cloud and data center environments
Assist with the development and implementation of vulnerability management policies and procedures, including those specific to cloud and data center environments
Work with cross functional teams on priority vulnerability tracking and remediation follow up
Develop ITSM Ticketing Workflows for Ownership Updates and other use cases