Overview
For our client we are looking for an experienced technical IT security consultant with well documented experience of vulnerability management in particular but IT security in general, e.g. Security Incident Management and Response, Endpoint Detection and Response, IAM and IoT Security. The initial task of the assignment is to install QualysGuard on 3 virtual appliances and to configure them to perform regular internal vulnerability assessment scan of the IT infrastructure, i.e. Windows clients, Windows and *nix servers and network devices. An important part of the assignment is to build a strategy for how to start with the scans in a restricted scope and then expand to cover all endpoints including using the Qualys Cloud Agent. The candidate will also create processes for remediation of potential vulnerabilities detected during the scans. The work will include close cooperation with the IT service suppliers and determining relevant KPI:s and metrics on which the suppliers should report on a monthly basis. The candidate will report directly to the Information Security Director.
Tasks:
– Develop a strategy for internal and external vulnerability assessment scanning
– Install and configure Qualys appliances to perform vulnerability assessment scans in a global network
– Develop processes and routines together with infrastructure service provider for verification of scan results and remediation of any vulnerability deemed necessary to be remediated
– Begin running regular vulnerability assessment scans of infrastructure, e.g. routers, switches, servers and client computers, using the appliances
– Plan for a roll-out of Qualys Cloud agents to all end user computers globally and ensure the result is managed in line with updated remediation
– Improve existing Security Incident and Response process and working with other IT Security tasks within our client
Required skills:
– Vulnerability Assessment Scanning using Qualys
– Security Incident Management and Response
– Working with IT Security in an outsourced environment
Preferred skills:
– IoT Security
– Identity Access Management
Start: 2018-10-23
Duration: 5 months, possibility for extension
Work load: 100%
Location: Tumba
Working language: Swedish & English
Please, apply directly through our system with
– your updated CV
– your hourly rate (all included)
– name and telephone number to 2 reference persons eWork can contact (we will contact your reference persons first after contact with you)
– information on when you are available to start
– in the Motivation describe why you are suitable for this assignment – refer to earlier assignments, employments, education and personal qualities.