Design, implement, and manage a comprehensive vulnerability management program aligned with industry best practices (e.g., NIST CSF).
8-12 years of experience in vulnerability management and security operations.
Proven experience in designing, implementing, and managing vulnerability management programs.
Strong understanding of vulnerability assessment tools and methodologies on Qualys, knowledge with other tools like Rapid7 InsightVM /Nexpose, Nessus, Tenable.io is a plus.
Experience with vulnerability prioritization frameworks (e.g., CVSS).
Excellent understanding of network security concepts, firewalls, intrusion detection/prevention systems (IDS/IPS).
Experience with Security Information and Event Management (SIEM) systems.
Experience with scripting languages (e.g., Python, Bash).
Experience with penetration testing methodologies (e.g., OWASP Top 10).