Threat & Vulnerability Analyst

At Ensono, our Purpose is to be a relentless ally, disrupting the status quo and unleashing our clients to Do Great Things! We enable our clients to achieve key business outcomes that reshape how our world runs. As an expert technology adviser and managed service provider with cross-platform certifications, Ensono empowers our clients to keep up with continuous change and embrace innovation.

We can Do Great Things because we have great Associates. The Ensono Core Values unify our diverse talents and are woven into how we do business. These five traits are the key to achieving our purpose: Honesty, Reliability, Curiosity, Collaboration, and Passion.

About the role and what you'll be doing: As an integral part of the Vulnerability and Threat Management team at Ensono, you'll play a crucial role in ensuring our systems and data are safeguarded against potential threats. Below are the key responsibilities and duties for this role:

Team Support and Collaboration:

• Assist in the execution of vulnerability and threat management initiatives under the guidance of senior team members.
• Collaborate with team members to prioritize tasks and allocate resources effectively.
• Participate in team meetings, contributing insights and ideas for enhancing security practices.

Vulnerability Assessment and Remediation Support:

• Utilize automated scanning tools to perform regular vulnerability scans across the Ensono infrastructure.
• Aid in analyzing scan results to identify vulnerabilities, misconfigurations, and weaknesses in systems and applications.

• Assist with classifying vulnerabilities based on severity levels (e.g., urgent, critical, high, medium, low) and prioritize remediation efforts accordingly.
• Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required.

• Contribute to the maintenance of a centralized repository for vulnerability reporting.
• Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required.

Threat Intelligence Analysis:

• Assist in monitoring external threat intelligence sources for relevant information on emerging threats and vulnerabilities.
• Support the analysis of incoming threat intelligence to assess its potential impact on Ensono's environment.
• Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required.

Process Support and Improvement:

• Aid in reviewing and refining vulnerability management processes and procedures to improve efficiency.
• Assist in identifying opportunities for automation and workflow optimizations to streamline operations.
• Contribute to the implementation of standardized methodologies and tools for vulnerability assessment and reporting.

Stakeholder Engagement:

• Collaborate with internal stakeholders to raise awareness of security risks and solicit support for remediation efforts.
• Assist in communicating effectively with stakeholders to provide updates on vulnerability management activities.

Performance Monitoring and Reporting Support:

• Assist in monitoring team performance against key performance indicators (KPIs) and tracking progress on vulnerability management activities.
• Contribute to the preparation of regular status reports and dashboards for senior management and stakeholders.

• Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required.

Professional Development:

• Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required.

• Seek feedback from senior team members and utilize it to continuously improve your performance and contribute effectively to the team's success.

We want all new Associates to succeed in their roles at Ensono. That's why we've outlined the job requirements below. To be considered for this role, it's important that you meet all Required Qualifications. If you do not meet all of the Preferred Qualifications, we still encourage you to apply.

Required Qualifications/Skills:

• Bachelor's degree in Computer Science, Information Security, a related field, or equivalent experience.
• Knowledge of vulnerability management, threat analysis, and incident response would be advantageous.
• Knowledge of security frameworks, standards, and regulatory requirements such as NIST, ISO 27001, and GDPR.
• Analytical and problem-solving abilities, capable of efficiently managing and prioritizing multiple tasks under demanding conditions.
• Strong communication skills, both verbal and written, facilitating effective collaboration and relationship-building across diverse teams and stakeholders.
• Awareness of a range of security tools and technologies, including vulnerability scanners, SIEM systems, and intrusion detection/prevention systems.
• • Dedication to ongoing learning and professional growth within the realm of information security, staying abreast of emerging threats and industry developments.
• This role offers an excellent opportunity to gain hands-on experience in the field of cybersecurity and make meaningful contributions to Ensono's security posture. If you're passionate about security and eager to learn, we encourage you to apply.

Why Ensono?

Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it.

We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time so if you are not required to be on a client site, you can choose to work from home or in our Ensono offices.

Some of our benefits include:

• Unlimited Paid Days Off
• Three health plan options
• 401k with company match
• Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts
• Family Forming Benefit including fertility coverage and adoption/surrogacy reimbursement
• Paid childbearing and paternal leave
• Education Reimbursement, Student Loan Assistance or 529 College Funding
• Sabbatical leave
• Wellness program
• Flexible work schedule

As of the date of this posting, a good faith estimate of the current pay scale for this role is $93,000 to $135,000 annually based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. In addition to base salary, other compensation programs, depending on eligibility, include an annual bonus plan based on company and individual performance and an equity grant under our Associate Equity Appreciation Program.

Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law.

Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website.

If you need accommodation at any point during the application or interview process, please let your recruiter know or email [email protected].