Enterprise Security Posture Management Analyst

Overview

Manage vulnerability assessments and remediation across on‑prem, cloud, and hybrid systems.

Key Responsibilities

• automation
• vulnerability scanning
• remediation
• risk assessment
• configuration review
• reporting

Tasks

-Create and maintain metrics, dashboards, and reports on trends, remediation progress, and program effectiveness for senior leadership. -Drive automation initiatives for scanning, reporting, and compliance checks to enhance efficiency and scalability. -Enrich vulnerability data with threat intelligence, perform risk assessments, and manage escalations for critical issues, including zero-day vulnerabilities. -Coordinate remediation efforts with cross-functional teams, ensuring timely patching, configuration hardening, and mitigation strategies to reduce attack surfaces. -Detect, report, and provide oversight over end-of-life hardware and software. -Stay updated on industry trends, emerging threats, and best practices, recommending enhancements to security controls and tools. -Continually improve vulnerability and configuration management programs, including policies, procedures, and tools for continuous monitoring and remediation capabilities. -Perform configuration reviews to detect and prioritize risks in networks, systems, applications, and cloud infrastructures. -Conduct continuous vulnerability assessments and verify appropriate coverage is maintained across on premises and cloud environments.

Requirements

• vulnerability management
• cloud security
• python
• qualys
• cissp
• 6+ years

What You Bring

-Familiarity with threat intelligence, incident response, and security operations in fast-paced environments. -Analytical skills for risk assessment, data enrichment, and trend analysis. -6+ years of experience in cybersecurity, with at least 3-5 years focused on vulnerability and configuration management. -Track record of leading security assessments, tool implementations, and cross-team collaborations in enterprise settings. -Strong knowledge of configuration management standards and Cloud Security Posture Management (CSPM). -Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field or equivalent experience. -All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations. -Proven experience managing vulnerability programs in on-premises, cloud (e.g., AWS, Azure, GCP), and hybrid environments. -Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent are highly desirable. -Curiosity to dig for root causes and find creative solutions to complex problems. -Excellent communication skills to explain risk to both technical and non-technical audiences and influence leaders across IT and the business. -Proficiency with vulnerability scanning and management tools like Qualys, Nessus, Tenable, Rapid7, or similar platforms. -Experience with scripting and automation languages (e.g., Python, PowerShell) for process optimization and integration.

People Also Searched For

About Black & Veatch

-Headquartered in Overland Park, Kansas, it delivers multi‑billion‑dollar projects in energy, water, communications and industrial sectors. -The company’s portfolio spans landmark work—from power plants and water treatment systems to hydrogen and LNG facilities. -It handles full lifecycle services: from strategic advisory and engineering through procurement, construction and operations. -Its history features many firsts: early U.S. water and power infrastructure, the first U.S. hydrogen conversion project, and biosafety labs overseas.

Sector Specialisms

Visa Sponsorship

-visa sponsorship not available.

Security Clearance

-criminal/civil background check -drug screen -motor vehicle records search