Stratascale Security Consultant - Vulnerability Management

The Stratascale Security Consultant - Vulnerability Management will play a vital role in helping our clients identify, assess, and mitigate vulnerabilities in their systems, networks, and applications. The Security Consultant will work closely with clients to develop and implement effective vulnerability management strategies to ensure their infrastructure remains secure against current and emerging threats.

This position will report to the Practice Manager of Security Operations within Stratascale.

This position is remote with home office setup as determined by Stratascale management.

Stratascale, an SHI company, brings together the benefits of 31 years' experience delivering the very best technologies with a fresh consultative approach to designing, delivering and supporting the technology our customers need to transform their business. We call it Digital Agility.

 To learn more about Stratascale visit our website: https://stratascale.com/ 

Includes, but not limited to:

• Execute and manage internal, external, and cloud network vulnerability scanning.
• Plan, design, and implement enterprise vulnerability scanning infrastructure that best supports the customer in their cloud, on-prem, or hybrid environment.
• Assist in deploying vulnerability management infrastructure that includes scanners, sensors, and agent configurations.
• Advise customers on Vulnerability Management best practices and remediation of vulnerabilities impacting the customer environment.
• Perform Vulnerability Management gap assessments for customers that include, but are not limited to, failed credentials, vulnerability prioritization, scan coverage, and configuration.
• Provide guidance and collaborate with peers on the Vulnerability Management practice team.
• Develop and publish thought leadership content such as blogs, articles, whitepapers, and case studies related to vulnerability management, cybersecurity, and industry best practices.
• Establish credibility as a trusted advisor to our customers.
• Provide mentorship and guidance to junior consultants.

• Bachelor’s Degree or equivalent experience
• 2 years experience client-facing experience working on security engineering-based projects and solutions services
• 2 years of experience managing complex solutions delivered on time and successfully
• 2 years of experience reporting on multiple service delivery opportunities and ongoing projects
• 2 years of experience understanding technical security solutions, addressing customer risk exposure, and solving critical use cases.
• 5+ years’ experience in information security services 
• 2 years of experience building and maturing security operations platforms within enterprise organizations

• Expert knowledge of supported practice-focused products and services
• Experience with engineering/deploying Firewalls, Patch Management, and Vulnerability Management technologies with additional knowledge of other security products and services.
• Experience deploying and maintaining Rapid7 and Microsoft.
• Experience with scripting tasks in Python, Powershell, BASH, or other native scripting languages.
• Experience with cloud service providers such as Amazon AWS, Microsoft Azure, and Google Cloud.
• Ability to write detailed vulnerability recommendations based on prioritization and remediation activities that need to be performed, including registry changes, patch deployment, and other mitigating factors.
• Demonstrate a real passion for team technology solutions design and delivery.
• Outstanding written and verbal communication and a strong ability to build relationships with customers, partners, and staff members
• Proactive and self-motivated mindset
• Ability to work effectively, add value as a team member
• Ability to train and disseminate information within an area or operation and work effectively within all levels of an organization, both internally and externally
• Attention to detail, organization, and follow-up skills are critical.
• Ability and Initiative to research and resolve problems with a positive attitude. Excellent presentation skills and comfortable leading meetings and discussions
• Problem-solving skills with the ability to serve as an escalation point and knowledgeable resource and direct resolution while accessing circumstances and current information to make informed and best decision

Certifications below are preferred but not required:

• Industry certifications:
• CISM / CISA / CRISC
• Security+
• Network+
• GIAC (GSEC)
• Vendor Solutions and product specific certifications or experience (or equivalent):
• Rapid7 and/or Microsoft
• Kenna/Nucleus Security/Brinqa
• Any Network/Cloud/MSSP security engineering experience

• Attend virtual customer meetings when appropriate
• Travel to customer sites, partner sites, conferences, and Stratascale offices up to 20% annually
• Candidate will need to have access to an international airport.

• The estimated annual pay range for this position is $140,000 - $170,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending. 
• Equal Employment Opportunity – M/F/Disability/Protected Veteran Status