Senior Vulnerability Management Analyst

Who We Are

In today’s work environment, employees use a myriad of devices to access IT applications and data over multiple networks to stay productive, wherever and however they work. Ivanti elevates and secures Everywhere Work so that people and organizations can thrive. 

While our headquarters is in the U.S., half of our employees and customers are outside the country. We have 36 offices in 23 nations, with significant offices in London, Frankfurt, Paris, Sydney, Shanghai, Singapore, and other major cities around the world.

Ivanti’s mission is to be a global technology leader enabling organizations to elevate Everywhere Work, automating tasks that discover, manage, secure, and service all their IT assets. Through diverse and inclusive hiring, decision-making, and commitment to our employees and partners, we will continue to build and deliver world-class solutions for our customers. 

Our Culture - Everywhere Work Centered Around You

At Ivanti, our success begins with our people. This is why we embrace Everywhere Work across the globe, where Ivantians and our customers are thriving. We believe in a healthy work-life blend and act on it by fostering a culture where all perspectives are heard, respected, and valued. Through Ivanti’s Centered Around You approach, our employees benefit from programs focused on their professional development and career growth. 

We align through our core values by locking arms in collaboration, being champions for our customers, focusing on the outcomes that matter most and fighting the good fight against cyber-attacks.  Are you ready to join us on the journey to elevate Everywhere Work? 

Why We Need You!

If you are proactive and an experienced Compliance Analyst looking for a new challenge Ivanti it the company for you. We are hiring a Senior Compliance Analyst to join our Compliance team. In this senior role, you will promote an organizational culture that ensures that deployed security controls continue to be effective and that operations remain within defined organizational risk tolerances. We need your innovative thinking to assist with designing and implementing our automated GRC continuous monitoring system, thereby minimizing risk exposure for Ivanti.

This is an exciting opportunity to be at the forefront of our continuous monitoring and compliance program. Candidates will thrive in a dynamic, collaborative environment that values integrity, growth, and innovation. Joining Ivanti means becoming part of a dedicated global team committed to protecting organizations in an ever-evolving technological landscape. With remote flexibility, competitive compensation, and a culture focused on support and success, this position offers a unique opportunity to make a significant impact while advancing your career in cybersecurity and compliance.

About The Team

Ivanti's Security Department is responsible for implementing and maintaining organization-wide information security policies, standards, guidelines, and procedures. The security team works collaboratively with other business units to document business requirements, then solves for those requirements through a variety of aligned platforms which make up our enterprise architecture. The teams ultimate goal is to keep Ivanti, our data, our customers and employees safe.

What You Will Be Doing

• Assessing and analyzing security controls to ensure that they are being performed at the required frequency as stated by Ivanti policy and regulatory standards
• Developing methods to monitor and measure risk, compliance, and assurance efforts
• Providing ongoing optimization and problem-solving support
• Providing recommendations for compliance management improvements for the vulnerability management program
• Participating in the implementation of GRC continuous monitoring using Archer
• Verifying, sanitizing and reporting vulnerability scan results
• Tracking remediation of vulnerabilities by collaborating with engineers and developers
• Tracking audit and gap analysis issue remediation
• Participating in vulnerability risk assessments and resolution
• Assisting with audit walk-throughs

To Be Successful in The Role, You Will Have

• Knowledge of compliance management concepts and continuous monitoring methodologies
• Knowledge of policy control management
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
• Knowledge of operational impact of control gaps
• Knowledge of industry-standards and organizationally accepted analysis principles and methods
• Knowledge of information technology (IT) architectural concepts and frameworks
• Knowledge of audit Frameworks (SOC 2, ISO, etc.) and principles
• Knowledge of system life cycle management principles, including software security and usability
• Knowledge of Vulnerability Management process and ability to perform issue analysis
• Experience using Qualys and its capabilities
• Experience sanitizing vulnerability scan reports and assisting with remediation recommendations

Roadmap for Success

First 90 Days:

• Complete new hire training and onboarding requirements
• Complete FedRAMP Training
• Understand our Vulnerability Management policies and program
• Develop a rapport and collaborate with the product control owners
• Be able to create vulnerability scan issue tickets in the Azure DevOPs
• Be able to identify, prioritize and troubleshoot control gaps and assist with remediation
• Be able to lead weekly Vulnerability Management meetings and track issue remediation

First 6 Months:

• Complete deliverables ensuring that they meet compliance requirements, project plan specifications and deadlines
• Ability to identify automation opportunities for continuous monitoring and participate
• Have a good understanding of cloud security platforms, specifically AWS and Azure
• Earned the respect and trust of product security engineers/peers as it relates to his/her control ownership
• Have a good understanding of service request, change management and compliance systems/tools
• Be able to recommend time-saving improvements to the ticketing tools
• Be able to work on projects independently

First 12 Months:

• Demonstrates ability to participate in project planning
• Ensures deliverables meet compliance requirements and project plan specifications and deadlines
• Can clearly explain required tool enhancements to engineers for implementation
• Can perform all vulnerability management tasks without assistance

Our Employer Commitment

This job posting will remain active until a qualified candidate is identified.

At Ivanti, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Ivanti believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop, and retain the most talented people from a diverse candidate pool.

If you require special assistance for the best interview experience, please contact us at recruiting@ivanti.com.

#LI-PD1 

#LI-Remote 

PWDNET