Job Search

Contract Duration: 12 Months (Possible Extension)
Location: Tampa, FL (2 Days a Week On-Site, Remote for Remaining Days)
Industry: Financial Services
Start Date: ASAP

We are seeking an experienced Vulnerability Management Analyst with deep expertise in Qualys for a 12-month contract opportunity with a leading financial services client based in Tampa, FL. This role will focus on vulnerability assessment and management, leveraging Qualys as the primary tool to identify, prioritize, and remediate vulnerabilities within the organization's environment.

The ideal candidate will have hands-on experience with Qualys Vulnerability Management, as well as strong knowledge of risk assessment methodologies, remediation strategies, and best practices for vulnerability management in financial services environments.

This is a hybrid role, with 2 days a week on-site in Tampa and the flexibility to work remotely the remaining days.

Vulnerability Scanning & Assessment: Manage and conduct regular vulnerability scans using Qualys across the enterprise environment (network, systems, endpoints, and cloud infrastructure).

Risk Prioritization: Analyze scan results to prioritize vulnerabilities based on risk impact, business needs, and compliance requirements (such as PCI-DSS, SOX, GDPR, etc.).

Remediation Management: Work closely with internal teams (IT, Network, Security, and Development) to track and ensure timely remediation of identified vulnerabilities.

Qualys Configuration: Configure, tune, and optimize Qualys to ensure effective vulnerability scanning and reporting. Customize scanning profiles to suit different environments and requirements.

Patch Management: Assist in coordination of patch management cycles and ensure vulnerabilities related to unpatched systems are addressed promptly.

Reporting & Documentation: Create and maintain vulnerability reports and dashboards in Qualys for stakeholders at different levels. Document and report on remediation efforts and progress.

Collaboration with Cross-Functional Teams: Collaborate with the security operations, network teams, and IT departments to assess and reduce vulnerabilities that may pose significant risk to the organization.

Compliance Support: Support compliance initiatives and audits by ensuring that vulnerability management aligns with industry regulations and internal security policies.

Trend Analysis & Continuous Improvement: Monitor vulnerability trends, analyze data for recurring issues, and suggest improvements to the vulnerability management process.

Experience:

3+ years of experience in vulnerability management, with at least 1 year of hands-on experience with Qualys.

Experience in vulnerability scanning, risk assessments, and patch management, preferably in financial services or highly regulated environments.

Technical Skills:

Expertise with Qualys Vulnerability Management and the ability to configure, customize, and optimize scans and reporting.

Familiarity with network security principles, risk assessments, and compliance frameworks (e.g., PCI-DSS, SOX, NIST).

Experience with remediation strategies and patch management tools.

Basic knowledge of networking (e.g., TCP/IP, DNS, HTTP/HTTPS) and operating systems (Windows, Linux, etc.).

Familiarity with SIEM tools and integration with vulnerability management platforms.

GCS is acting as an Employment Business in relation to this vacancy.