At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.
We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways.
Are you curious about being part of our growth story while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.
THE OPPORTUNITY
Location: UK, hybrid (1/ week from Corby office)
SC requirements: Must have UK passport, be UK based for more than five consecutive years and able to obtain SC security clearance
Job summary:
We are looking for a talented Senior Systems Engineer who has the experience necessary to help build out our existing infrastructure and troubleshoot problems as they arise.
The ideal candidate for this position is expected to deliver results while maintaining positive relationships with other IT infrastructure teams and project sponsors.
In this role, you will lead high priority projects and day-to-day activities related to our Vulnerability and Patch Management Program.
For this position, we are seeking a candidate who can administer and maintain centralized patch and vulnerability management solutions to ensure end-points are compliant with Security guidelines.
Your role in our mission:
1. Perform endpoint management to provide patching and task automation of servers and desktops to maintain a secure and compliant environment.
2. Maintain a secure, patched, upgraded, and compliant Windows and Linux environment.
3. Troubleshoot and resolve advanced and complex technical problems to ensure minimal disruption to the client mission critical environment.
4. Prepare technical designs and documentation (i.e., knowledgebase articles) for use by support teams.
5. Report on compliance to vulnerability remediation policy.
6. Monitor weekly automated scans and perform analysis of enterprise-class information systems, to include discovery scans, compliance scans, and vulnerability scans.
7. Process exception and dispute requests.
8. Identify and mitigate detection and reporting gaps.
9. Track and report test results.
10. Respond to audit requests.
Key Skills, Requirements and Competencies:
1. Strong working experience with working directly with vulnerability and/or patch management.
2. Possesses a strong understanding of vulnerability management concepts such as exposure, severity, criticality, risk, and threat.
3. Possesses an understanding of how vulnerabilities are exploited.
4. Possesses an understanding of SCAP, CVE, CVSS, CPE, CCE, VPR, and OVAL.
5. Demonstrates a firm grasp of the concepts of risk management and mitigation.
6. Possesses an understanding of enterprise technology infrastructure, application development & maintenance, software testing, and IT architecture.
7. Possesses experience using a variety of vulnerability scanners and managing remediation efforts.
Minimum Skills & Qualifications:
1. Reporting on required metrics (key risk and performance indicators) to measure the monitoring and remediation program.
2. Security+, CEH, CISM preferred.
3. Outstanding written and verbal communication skills, with a high degree of professionalism and strict attention to detail.
4. Must be a seasoned Vulnerability Management Engineer to proactively manage, upgrade, and improve a centrally managed infrastructure and provide customer support.
5. Demonstrated subject matter expertise with vulnerability and patch management, insider threat, and incident response.
6. Broad knowledge in risk analysis, threat mitigation, and other security domains. Understanding of various networking ports, protocols and services.
7. Network architectures including VLAN, routing, firewalls, and extreme network segmentation.
8. Significant experience with Linux and Windows operating systems, including extensive knowledge of virtualization platforms.
9. Required to have broad technical knowledge on a number of security technologies and a solid understanding of information and networking security.
10. Soft skills such as the ability to build relationships, build consensus, negotiate solutions, and coordinate with other work streams through their decision process.
Category: Information Technology
#J-18808-Ljbffr