ASM Vulnerability

Job Responsibilities

• Utilize and analyze security findings across the Perimeter Attack Surface Management toolset (e.g. BitSight, Security Scorecard, BlueVoyant, IONIX, Shodan, NMAP, VulnDB, etc.) to obtain insights on security posture
• Perform Vulnerability Assessments utilizing various tools, prioritizing vulnerabilities, and assisting in assessing impact to MetLife
• Perform Internal Attack Surface Management assessments to identify opportunities to reduce attack surface and exposure risks
• Support Forbidden Software Tracking workflows
• Support Forbidden Port and Service Monitoring efforts
• Create various reports for leadership and stakeholder utilization
• Proactively seek self-paced training videos and learning forums
• Actively participate in team meetings

Education, Technical Skills & Other Critical Requirement

Education

• IT Graduate
• Knowledge of Networks, Hardware, Firewalls and Encryption

Experience

(In Years)

• Total of 7 years of Vulnerability, Threat, and Security Assessments experience
• Degree in Computer Science, Information Systems or equivalent experience
• Ability to perform basic scripting to analyze and automate repeatable processes (e.g. Python, Perl, Ruby, PowerShell, REST API) is a plus

Technical Skills

• General Vulnerability, Threat, and Security Assessments experience
• General knowledge of Operating Systems, Networking, Firewalls, Security Controls, etc.
• Familiarity with various infrastructure assessment tools, Linux and CLI tools experience
• Stakeholder relationship management experience (e.g. good written/verbal skills)

Other Critical Requirements Like Voice/ Non-Voice for Insurance Ops

Preferably:

• Offensive Security Certified Professional (OSCP)
• Certified Network Defender (CND) Certification