Vulnerability Analyst

Do you assess and analyze vulnerabilities within a large enterprise environment? Are you skilled in both scoring and prioritizing vulnerabilities based on CVSS results, as well as collaborating with technology owners to facilitate the patching of identified vulnerabilities? If you answered, yes, to these questions, then you might be Fivesky’s next Vulnerability Analyst! 

Who you are: 

• 2-3+ years of experience using Qualys CVSS tool for scoring vulnerabilities in an enterprise environment.
• Have experience with factoring when determining CVSS scores.
• The builder of bridges when it comes to relationships with technology teams.
• Meticulous in handling, sharing and communicating information.
• Work within a cloud environment (AWS/Azure).
• Passionate about cybersecurity.

What you will do:

• Review and conduct an in-depth investigation of newly identified vulnerabilities on a daily basis.
• Pays meticulous attention to detail and handles sensitive data with the utmost care.
• Assess and analyze vulnerabilities daily, determining each vulnerability's relevance to the organization's systems.
• Evaluate, score and prioritize the severity and potential exploitability of each vulnerability..
• Notify stakeholders about vulnerabilities, work together on fixes, and track patching progress and follow up ensuring timely and effective implementation of fixes.
• Compares findings with the information provided by stakeholders to identify any inconsistencies.
• Advocate for comprehensive vulnerability assessment and remediation.
• Request additional evidence and information from stakeholders to validate assessment outcomes.
• Assess Common Vulnerabilities and Exposures (CVEs) that pertain to technology products.
• Use your experience in factoring of compensating controls when determining CVSS scores, and ensuring accurate risk assessments.
• You are comfortable escalating identified vulnerabilities to the highest levels (CISO).

It would be awesome if you had:

• Splunk experience, with the ability to extract data and work with dashboards
• Utilized Jira to keep track and follow up on open ticket items.
• Experience with Archer, Tenable and Python.

Who we are: 

Fivesky is a fast-growing, global technology solution provider. We partner with the world’s largest financial service firms to deliver networking/infrastructure, cybersecurity, and cloud-based solutions for complex, global projects.

At Fivesky, our employees are our greatest asset and we strive to build a strong team culture centered on highly competitive compensation, professional development, career advancement, and fun.

Fivesky is an equal opportunity employer. In accordance with anti-discrimination law, it is the purpose of this policy to effectuate these principles and mandates. Fivesky prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status (United States positions), or any other characteristic protected by law. 

This is a Full-time position in Montreal, CAD. The compensation package is based on experience and qualifications.

(FS-RID-0756)