Finding the best job has never been easier
Share
Job Area:
Information Technology Group, Information Technology Group > Cyber Security Engineering
Looking for a seasoned professional with experience in Vulnerability Analysis, Vulnerability Assessment and Vulnerability Management. The candidate will be a member of the Cyber vulnerability Management Team in Qualcomm. The following sections give a comprehensive description of competencies that are required to execute the job..
Core Competencies
• Carry out Vulnerability Assessment for network infrastructure, Applications, systems and devices to identify, fix and mitigate any identified vulnerabilities
• Work on the larger scope, mission and goals of a Vulnerability Management Program
• Assist with security audits, risk analysis, vulnerability testing and security reviews of the entire corporate information technology architecture, as well as reviews of services provided by trusted third parties.
• Generate and compute metrics to show program efficiency and effectiveness
• Work with stakeholders to maintain security hygiene of all in-scope assets
• Feed inputs on TTPs, Threat Actors and Attack Vectors to Cyber Security Operations Center
• Skill in the use of penetration testing tools and techniques.
• Scripting languages like python, powershell etc will be added advantage
Preferred Competencies
• Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems.
• Skill in conducting infrastructure vulnerability assessments.
• Skill in performing impact/risk assessments.
• Skill to develop insights about the context of an organization’s threat environment
• Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
• Ability to apply programming language structures (e.g., source code review) and logic.
• Ability to share meaningful insights about the context of an organization’s threat environment that improve its risk management posture.
9 - 12 years experience in Information Security without at least 5 years in Vulnerability Management
5+ years experience working in vulnerability managment with strong background of other cyber domains
The individual must have sound understanding of current and developing security threats and technologies
Strong proficiency in written and spoken English
Prior professional services experience in 24x7 SOC/VM operations is desired
Bachelor’s degree or Master’s Degree in Computer Sciences or in Cyber Security
CEH, Security+, OSCP or other industry-relevant cyber-security certifications and ITIL V3.0 knowledge is a plus
Minimum Qualifications:
• Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 3+ years of cybersecurity-relevant work experience.
High School diploma or equivalent and 5+ years of cybersecurity-relevant work experience.
Physical Requirements:
• Frequently transports and installs equipment up to 40 lbs.
Preferred Qualifications:
• 6+ years of cybersecurity-relevant work experience with a Bachelor's degree in Engineering, Information Systems, Computer Science, or related field.
• Familiarity with Programming Language such as C, C++, Java, Python, etc.
• Cybersecurity-relevant certifications.
Principal Duties and Responsibilities:
• Leverages knowledge in a security-related area (e.g., cryptography, hacker exploits, reverse engineering, etc.) to acts as a technical lead on a single project and manage project priorities, deadlines, and deliverables with minimal supervision.
• Performs security-related tasks involving multiple technologies.
• Stays up-to-date on latest trends to prevent potential attacks and shares knowledge within team
• Conducts root cause analyses to find the cause of system vulnerability issues; identifies possible solutions.
• Identifies issues utilizing a variety of techniques and applies known countermeasures for multiple subsystems; influences other teams to adopt countermeasures to mitigate future issues.
• Writes, reviews, and edits technical documentation. Presents complicated technical information to more senior engineers.
• Writes automation and other code to deliver complete solutions.
• Provides guidance to others and addresses escalations in one to two interdisciplinary areas by communicating with stakeholders, vendors, and other team members to troubleshoot and resolve issues.
Level of Responsibility:
• Working under some supervision.
• Taking responsibility for own work and making decisions that are moderate in impact; errors may have relatively minor financial impact or effect on projects, operations, or customer relationships; errors may require involvement beyond immediate work group to correct.
• Using verbal and written communication skills to convey complex and/or detailed information to multiple individuals/audiences with differing knowledge levels. Role may require strong negotiation and influence, communication to large groups or high-level constituents.
• Having moderate amount of influence over key organizational decisions (e.g., is consulted by senior leadership to provide input on key decisions).
• Using deductive and inductive problem solving is required; multiple approaches may be taken/necessary to solve the problem; often information is missing or incomplete; intermediate data analysis/interpretation skills may be required.
• Exercising creativity to draft original documents, imagery, or work products within established guidelines.
Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law.
These jobs might be a good fit