This job has expired

Cyber Security Vulnerability Management Associate

Employer
Pfizer
Location
Sandwich
Salary
Negotiable
Closing date
10 Dec 2023

View more

Sector
Technology & Digital
Hours
Full Time
Flexibility
Flexible working available
Contract Type
Permanent

Job Details

The Global Information Security organization promotes cybersecurity ownership and partnership culture across Pfizer. The Cyber Security Vulnerability Management Associate performs vulnerability scanning & assessments across the busienss to protect the confidentiality, integrity & availability of information assets with a risk-based approach. Ensure continuous vulnerability life cycle management focused on analysis and validation of scan results, setting relative Pfizer risk ratings, providing remediation recommendations, tracking & reporting vulnerabilities to improve the overall security posture of Pfizer. Based in Sandwich (Kent, UK) with flexible working possible. Full details on Pfizer careers website.

  • Perform scheduled/on demand vulnerability scanning & assessments, and triage, reports & analysis
  • Analyse & validate scan/assessment results
  • Collaborate to address issues re the remediation of vulnerability scanning & assessments
  • Support key stakeholders to interpret vulnerability results; give guidance on the remediation of existing/emerging threats, evaluate false positives
  • Configure, maintain, operate vulnerability management tools
  • Use metrics to analyze & prioritize vulnerabilities
  • Track remediation work to advance improvements to program & closure of vulnerabilities
  • Remediation support on any potential findings
  • Partner with security, manufacturing & IT infrastructure professionals to assess potential impact from vulnerabilities & determine appropriate mitigating controls

QUALIFICATIONS

  • BS in Security & Risk Analysis, Information Assurance & Cybersecurity, or related field
  • Professional experience in an Information Security role
  • Entry level comprehension: operating systems, network protocols, & applications development
  • Basic understanding: security testing tools, port scanners, vulnerability scanners & exploit frameworks
  • Basic understanding: industry frameworks & best practices: CIS Critical Security Controls, Threat Modeling, OWASP, NIST 800 Series
  • Understand malware, emerging threats, attacks, & vulnerability management
  • Exposed to scripting / programming languages like Python/Ruby/PowerShell

Company

We aim to create a trusting, flexible workplace culture which encourages employees to achieve work life harmony, attracts talent and enables everyone to be their best working self. 

In the UK, we have around 2,400 colleagues across four locations, working within our commercial business, research and development (R&D), manufacturing and distribution operations.

View our Top Employer profile

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert