Job Summary
We are looking for an experienced Tenable Specialist to join our cybersecurity team. This role will involve leveraging Tenable. SC’s and other (Tenable One, VM etc) capabilities to manage vulnerabilities, assess security risks, and improve the overall security posture of the organization. The ideal candidate will have hands-on experience with Tenable.SC, performing comprehensive vulnerability assessments, and maintaining continuous monitoring of IT assets to ensure compliance with industry standards and regulations.
Key Responsibilities (Detailed):
1. Configure, deploy, and manage the Tenable Security Center (Tenable.SC) platform or other modules to monitor vulnerabilities across networks, systems, and applications.
2. Regularly tune the platform to improve efficiency and accuracy of vulnerability detection and remediation.
3. Integrate Tenable.SC with other security tools and platforms (e.g., SIEM, endpoint protection solutions).
4. Perform regular, automated vulnerability scans using Tenable.SC across the entire infrastructure, including servers, endpoints, databases, and cloud environments.
5. Analyze scan results to identify vulnerabilities and prioritize them based on criticality and business impact.
6. Coordinate with IT teams to ensure timely patching, remediation, or mitigation of identified vulnerabilities.
7. Use Tenable.SC to continuously monitor the organization’s security posture and track exposure to new vulnerabilities in real-time.
8. Generate reports and dashboards that provide visibility into the organization's security risks and vulnerabilities.
9. Ensure continuous assessment and protection of critical assets by implementing effective scan schedules and strategies.
10. Ensure that the organization’s vulnerability management program aligns with regulatory compliance requirements (e.g., PCI DSS, NIST, HIPAA).
11. Work with compliance and audit teams to provide documentation and evidence for audits and assessments using Tenable.SC’s reporting capabilities.
12. Stay up-to-date with emerging threats and vulnerabilities and adjust scan policies to mitigate risks effectively.
13. Integrate external threat intelligence sources with Tenable.SC to correlate vulnerabilities with active threat data and prioritize the most critical issues.
14. Collaborate with the Security Operations Center (SOC) to respond to vulnerabilities associated with real-time threats and attacks.
15. Create and present detailed reports on vulnerability trends, risks, and remediation efforts for both technical teams and executive leadership.
16. Utilize Tenable.SC's advanced analytics features to identify security gaps and provide recommendations for improvement.
Required Skills & Qualifications:
Experience:
1. Minimum 3+ years of hands-on experience with Tenable Security Center (Tenable.SC) or similar modules/tools.
2. Proven track record of vulnerability management and remediation in large-scale enterprise environments.
Technical Expertise:
1. Proficiency in vulnerability scanning, assessment, and remediation using Tenable.SC.
2. Strong understanding of network infrastructure, system administration, and cybersecurity principles.
3. Familiarity with risk management frameworks and regulatory compliance (e.g., NIST, CIS, GDPR, ISO 27001).
Security Certifications:
1. Relevant certifications or as per experience, such as Tenable Certified Professional, CISSP, CEH, or CompTIA Security+ are preferred.
2. Other Skills:
3. Excellent analytical skills with the ability to interpret complex vulnerability data and prioritize remediation efforts.
4. Strong communication skills, with the ability to present technical findings to both technical and non-technical stakeholders.
Preferred Qualifications:
1. Familiarity with integrating Tenable.SC with SIEM tools and cloud environments.
2. Experience in automating vulnerability management processes using scripts or APIs.
3. Knowledge of advanced threat detection and prevention technologies.
Location: Mclean VA or Hybrid
Duration: 3 Months to 1 Year