Vulnerability Management Configuration Assurance Analyst Jobs in USA, MA, Springfield | Rose International Job

Rose International

Springfield, MA

Apply

JOB DETAILS

SALARY

$60–$62 Per Hour

JOB TYPE

Temporary

SKILLS

Amazon Web Services (AWS), Analysis Skills, Cloud Computing, Communication Skills, Computer Security, Configuration Management, Detail Oriented, Enterprise Protection, Environmental Compliance, Establish Priorities, GCP (Good Clinical Practices), Hybrid Cloud, ISO (International Organization for Standardization), Industry Standards, Information/Data Security (InfoSec), Maintain Compliance, Metrics, Microsoft Windows Azure, Multiplatform/Cross-Platform, PCI, PCI-DSS, Problem Solving Skills, Reporting Dashboards, Reporting Skills, Risk, Risk Analysis, Risk Management, Security Analysis, Security Compliance, Security Information and Event Management (SIEM), Security Infrastructure, Software Engineering, Systems Administration/Management, Technical Support, Threat and risk analysis (TRA), Trend Analysis, U.S. National Institute of Standards and Technology (NIST), Vulnerability Scanners

LOCATION

Springfield, MA

POSTED

3 days ago

Required Education:Bachelor's degreeRequired Qualifications / Skills / Experience:Hands-on 5 years of experience with enterprise vulnerability management tools such as Qualys, Wiz, Tenable, Rapid7, or similar platformsExperience identifying, assessing, prioritizing, and tracking vulnerabilities across endpoints, servers, cloud environments, and hybrid infrastructureStrong understanding of CVSS scoring, exploitability analysis, threat intelligence, and risk-based vulnerability prioritizationExperience assessing and validating secure configurations against industry standards and frameworksExperience integrating vulnerability and configuration management data into SIEM, GRC, and ticketing platformsKnowledge of security frameworks including CIS, NIST, ISO, and PCI-DSSExperience working with cloud platforms, including AWS, Azure, and/or GCPStrong analytical, problem-solving, and risk assessment capabilitiesExperience developing executive and technical security reportingPreferred Qualifications / Skills / Experience:Experience with container security and hybrid infrastructure environmentsExperience creating dashboards and visualizations using tools such as TableauExperience working within enterprise security operations, governance, risk, and compliance environments Vulnerability Management & Configuration Assurance Analyst Overview:The Vulnerability Management and Configuration Assurance (VMCA) Analyst is responsible for identifying, assessing, and reducing cyber risk across enterprise environments through effective vulnerability management and configuration assurance practicesThis role drives visibility into security vulnerabilities and configuration weaknesses across on-premises, cloud, and hybrid environmentsThe analyst leverages enterprise security tools, analytics, and reporting capabilities to assess vulnerabilities, monitor compliance with secure configuration standards, and provide actionable remediation guidanceResponsibilities include analyzing vulnerability scan results, prioritizing remediation activities based on risk and exploitability, validating secure configurations, and implementing compensating controls when requiredThe role partners closely with Infrastructure, Cloud, Engineering, Security, and Business Information Security stakeholders to improve overall security postureThe analyst supports governance, audit readiness, executive reporting, and continuous security improvement initiatives through accurate risk metrics, compliance reporting, and remediation trackingSuccess in this position requires strong analytical skills, risk-based decision-making, collaboration, operational ownership, and the ability to communicate complex security risks to both technical and executive audiencesJob Duties:Perform vulnerability assessments across on-premises, cloud, and hybrid environmentsAnalyze vulnerability scan results and prioritize remediation efforts based on risk, exploitability, and business impactAssess and validate secure configuration standards across enterprise platforms and technologiesMonitor configuration compliance and identify security gaps or misconfigurationsImplement and recommend compensating controls where remediation cannot be immediately completedDevelop risk metrics, dashboards, and executive reporting related to vulnerability management and configuration assuranceCollaborate with Infrastructure, Cloud, Engineering, Security, and Business Information Security teams to drive remediation activitiesIntegrate vulnerability and configuration data into SIEM, GRC, ticketing, and governance platformsSupport audit readiness, compliance assessments, and security governance initiativesIdentify trends, anomalies, and risk concentrations through data analysisProvide actionable recommendations to improve security posture and control effectivenessContinuously improve vulnerability management and configuration assurance processesSpecific Details to Call Attention To:Strong hands-on experience with vulnerability management platforms such as Qualys, Wiz, Tenable, Rapid7, or similar tools is requiredMust have experience performing risk-based vulnerability analysis using CVSS scoring, exploitability, and threat intelligenceExperience assessing configuration compliance against CIS, NIST, ISO, and PCI-DSS frameworks is highly importantCloud security experience within AWS, Azure, and/or GCP environments is strongly preferredMust be comfortable presenting security risks, remediation progress, and metrics to both technical and executive stakeholdersExperience supporting governance, audit readiness, and enterprise security compliance initiatives is highly desired **Only those lawfully authorized to work in the designated country associated with the position will be considered.** **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client’s business needs and requirements.** Benefits: For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website. California Pay Equity: For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here. Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances. If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department. Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).

About the Company

Rose International

Founded in 1993 by Sue Bhatia, Rose International is one of the nation's leading minority- and woman-owned providers of Staffing and Total Talent Solutions. We serve companies in all 50 states and employ thousands of people across the country.

COMPANY SIZE

2,500 to 4,999 employees

INDUSTRY

Staffing/Employment Agencies

WEBSITE

https://www.roseint.com/