Calance Job Opening

Job TitleSecurity Engineer (Vulnerability Management) - ID:36405
Duration12 Months
Start DateASAP
Job SkillsThey do not want a “prima donna”.
This person will be calling to follow up with vendors and needs have strong communication skills, in addition to the technical expertise.
Previous vulnerability work is a must have.
They would prefer a go-getter who is willing to learn rather than someone who has been stagnant in their roles. Resources should have IT security focus with experience in Vulnerability management, Vulnerability scanner tools, and remediation process. Experience in healthcare is not required but desirable. 3-5 years of related experience required.
Need self-starter who can "hit the ground running" and make progress on remediations.
No certifications required as long as they have the required experience.
LocationDuluth, MN
Date Posted12/21/2020

Generated button

Location: Duluth, MN and/or remote (some onsite visits still required throughout)

Take lead and focus on remediating known vulnerabilities on medical devices.
Medigate is the vulnerability scanner technology being used to report on the vulnerabilities. Medigate is very specific to healthcare - previous experience is helpful, but not required.
Work with the Network, Security, and Biomed teams, as well as third-party vendors to prioritize remediation efforts, research and determine the appropriate actions to take, coordinate resources, and schedule remediations as appropriate.
o Example remediations include software upgrades, device refreshes, and/or compensating IT controls (segmentation).
Work with medical device vendors to discuss supported remediation options and obtain pricing for upgrades or replacements as needed.
Assess organization’s vulnerability management program through the use of automated tools and manual techniques to identify and verify how assets and vulnerabilities are tracked and remediated.
Provide tactical and strategic guidance and detailed remediation advice aimed at improving clients’ security posture.
Assess vulnerability management programs including documented procedures, and workflow from asset discovery through to remediation tracking.
Create comprehensive assessment reports that clearly identify existing vulnerabilities, average time to remediation, compensating controls, work in progress, as well as roadmap for remediation for vulnerabilities.
Interface with client personnel and technologies to gather information, clarify scope, and remediate vulnerabilities.
Execute projects using established methodology, tools and documentation.
Successfully implement changes within client environments to reduce their overall risk.

Minimum three (3) years of experience performing hands-on configuration changes, vulnerability management engineering, and vulnerability assessments.
Must have IT security focus with experience in vulnerability management, vulnerability scanner tools, and remediation processes.
Be a self-starter who can "hit the ground running" and make progress on remediations.
Ability to combine multiple separate findings to identify complex blended vulnerabilities and attack chains
Ability to identify, describe and report vulnerabilities and detailed remediation activities, to include clear demonstration of risk to clients
Knowledge of risk-based analysis tools (i.e. Kenna/Brina/etc.)
Deep understanding of different Operating Systems, network architectures, network devices, and software suites required (e.g. Linux, Windows, Cisco, Active Directory, GPO, etc.)
Must be able to work well with customers and self-manage through difficult situations, with a focus on client satisfaction.
Ability to convey complex technical security concepts to technical and non-technical audiences
Ability to work both independently as well as on teams to meet deadlines required.
Bachelor’s Degree from a four-year college or university in Information Assurance, Computer Science, Management Information Systems or related area of study preferred; related experience and/or training is required.
Experience in healthcare is not required but desirable.
Be a creative problem-solver with the ability to tackle unique, complex projects

Send To Email / Remind Me



Mission Viejo, CA ~ (800) 732-4680
Atlanta, GA ~ (866) 732-4680

Calance is a global IT Services firm specializing in end-to-end solutions for Development, Managed Service,
Security, SAP, Project Control Integration and IT Staffing.Operating in the United States and India,
Calance helps clients bring their ideas and strategies to life through talent, technology and tenacity.

2020 All rights reserved.