It’s fun to work at a company where people truly believe in what they are doing!
Job Description:
Job Summary:
We are seeking a highly skilled and experienced Senior Cybersecurity Engineer to focus on vulnerability management and attack surface management. This role will involve working closely with IT and business teams to identify and remediate vulnerabilities, monitoring threat intelligence sources for zero-day attacks, and driving the vulnerability response plan. The ideal candidate will have a strong background in cybersecurity, familiarity with popular vulnerability management tools, and experience with external attack surface vulnerabilities and monitoring tools.
Job Responsibilities:
Collaborate with IT and business teams to identify, assess, and remediate vulnerabilities.
Consult with remediation owners to help them understand the vulnerabilities and possible mitigations.
Monitor threat intelligence sources for zero-day attacks and adjust the vulnerability response plan accordingly.
Conduct daily monitoring of the organization’s vulnerability and attack surface.
Escalate identified vulnerabilities to the appropriate teams for remediation.
Utilize various vulnerability management tools to conduct regular scans and assessments.
Implement and manage external attack surface monitoring tools.
Develop and maintain documentation related to vulnerability management processes and procedures.
Provide regular reports and updates to senior management on the status of vulnerabilities and remediation efforts.
Stay up to date with the latest cybersecurity trends, threats, and technologies.
Job Requirements:
5+ years’ work experience in computer systems with specialization in vulnerability and attack surface management.
Understanding of tactics, techniques, and procedures of modern adversaries.
Strong knowledge of popular vulnerability management tools (e.g., Nessus, Qualys, Rapid7).
Experience with external attack surface monitoring tools (e.g., RiskIQ, CyCognito).
Familiarity with AWS and Azure cloud environments.
Familiarity with threat intelligence sources and zero-day attack monitoring.
Excellent problem-solving skills and attention to detail.
Excellent communication skills, both verbal and written. Must be a self-managed/self-driven individual.
Relevant certifications include CompTIA: Security+, A+, CySA+, CASP; CEH; GIAC (SANS): GEVA
Candidates based in California, Colorado, Hawaii, New York, Vermont, Washington or Washington, DC:
The Compensation range for this role is 91,922.40 – 183,844.80 USD annually and may be eligible for an annual bonus. Actual compensation within that range will be dependent upon the individual’s location, skills, experience and qualifications.
Click here to learn about Epiq’s Benefits.
If you like wild growth and working with happy, enthusiastic over-achievers, you’ll enjoy your career with us!
It is Epiq’s policy to comply with all applicable equal employment opportunity laws by making all employment decisions without unlawful regard or consideration of any individual’s race, religion, ethnicity, color, sex, sexual orientation, gender identity or expressions, transgender status, sexual and other reproductive health decisions, marital status, age, national origin, genetic information, ancestry, citizenship, physical or mental disability, veteran or family status or any other basis protected by applicable national, federal, state, provincial or local law. Epiq’s policy prohibits unlawful discrimination based on any of these impermissible bases, as well as any bases or grounds protected by applicable law in each jurisdiction. In addition Epiq will take affirmative action for minorities, women, covered veterans and individuals with disabilities. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. Epiq is pleased to provide such assistance and no applicant will be penalized as a result of such a request. Pursuant to relevant law, where applicable, Epiq will consider for employment qualified applicants with arrest and conviction records.