Staff Vulnerability Management Analyst - Federal

📋 Description

• Own end-to-end Asset and Vulnerability Management scanning and reporting.
• Assess new and existing scan tech to determine value.
• Monitor and respond to security inquiries, incidents; explain risk.
• Help define internal processes for accelerated remediation of critical vulnerabilities.
• Support audit and governance for PCI, ISO 27001/27017/27018, NIST SP 800-53, SOC 2.
• Track weaknesses in vulnerability controls to meet NIST 800-171 and CMMC.

🎯 Requirements

• 5+ years of multifaceted cyber security in a tech company.
• 5+ years building vulnerability scanning in FedRamp IL4/IL5/IL6 environments.
• Experience with Qualys, Tenable, Prisma Cloud, and related scanners.
• Knowledge of vulnerabilities, exploitation and remediation.
• Familiar with CVE, CVSS, EPSS, OWASP, and CISA KEV.
• Python scripting and automation; experience with AWS Lambda/serverless is a bonus.

🎁 Benefits

• Benefits via rewards.okta.com
• Social impact programs
• Talent and community at Okta