Cybersecurity Engineer

Position Name: Cybersecurity Engineer

Process Name: Vulnerability Management

Location: Hyderabad

Shift Timings:  09:30 AM – 06:30 PM IST & 01.00PM – 10.00PM IST

ABOUT FACTSET

FactSet is currently seeking a Cybersecurity Engineer, experienced in vulnerability management, development, and remediation, to join the global Security team.  The ideal candidate will have a background in vulnerability management, penetration testing and system remediation.  You will work with talented individuals in Network Engineering, Systems Engineering, Client Services, and of the Security Team to conduct assessment and compliance testing.  Some Vulnerability Management Engineer duties involve direct communication with internal clients and stakeholders, thus good communication and interpersonal skills are a must.

This position will report directly to the Security Assurance and Vulnerability Management Manager.
 

Job Responsibilities:

• Identify potential risks, threats, vulnerabilities and exploits in systems and applications through vulnerability and compliance assessments, and penetration testing.

• Define information security policies and standards that support OS Hardening and secure configurations.

• Support the automation of security testing and more efficient discovery, tracking, and resolution of security vulnerabilities. Automate repetitive processes and improve operational efficiencies.

• Support the writing and creation of vulnerability database queries and the presentation of vulnerability data in dashboarding technologies.

• Generate detailed vulnerability reports for internal and external stakeholders.

• Educate employees on applying updates and configuration best practices.

Job Requirements:

• Bachelors or master’s in Computer Science/Engineering/Security or related field

• 4+ years of relevant Security Engineering with a focus on Vulnerability Management, Penetration Testing or Security Assurance.

• 2+ years of experience with scripting/query languages such as SQL and Python.

• Extensive understanding of vulnerability scanning tools Nexpose or Nessus and Wiz.

• Working experience on Wiz Platform Administration & Operations:

  • Serve as the primary administrator for the Wiz platform, managing configurations, integrations, and updates.

  • Develop and enhance dashboards, reports, and alerts within Wiz to provide actionable insights for stakeholders.

  • Troubleshoot and resolve platform issues, ensuring its continuous availability and performance.
     

• Detail-oriented and quality-driven with excellent communication and interpersonal skills

• Knowledge of common operating system and common vulns and their potential impact, such as the Bluekeep, Spectre, WannaCry, Heartbleed, etc.

• Strong understanding of network topology.

• Experience with Windows and Linux.

• Experience in security testing for cloud services (AWS, Azure) is a plus.

• Relevant industry training and/or certification is a plus: CSSLP, CISSP, CEH, GPEN, CCNP

• Ability to deliver quality results in high-pressure situations.

• Ability to multi-task and manage demands of many projects, issues, and tasks.

• Ability to perform duties with minimal supervision.

Tools and Capabilities:

• Nexpose, Nessus, nmap, Metasploit

• TCP/IP, HTTP(S), XMPP and DNS

• Firewalls, IDS/IPS

• MySQL, MSSQL, NoSQL

• Perl, Python, Shell Script or PHP

• Cloud Platforms (AWS, Azure)

Professional Position Overview:

The Vulnerability Management Security Engineer will be responsible for completing the following tasks:

• Perform risk assessments and security testing as part of the Risk Management Framework (RMF) Assessment and Authorization (A&A) Process.

• Develop, document, and implement process changes that lead to improved efficiency and depth of assessments.

• Demonstrated ability to conduct root cause analysis when identifying problems.

• Proactively monitoring the security of an enterprise network.

• Assessing security controls in accordance with security standards, frameworks, laws, and policies.

• Collaborate with infrastructure, application, and cloud teams to ensure timely remediation of vulnerabilities.

• Collaborate with cloud engineering teams to ensure best practices in cloud security.

• Ability to interpret policies, procedures, standards, guidelines, and regulations to include National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA).

• Perform automated system security scans using Nessus.

• Collect, track, and manage security artifacts and documentation.

• Enhancing and maintaining existing scripts and managing the process of asset tracking and scanning in a localized database

• Building out new capabilities related to asset management and tracking.

• Reporting, including but not limited to:

  • Draft, track and update technical reports.

  • Creation and maintenance of reporting dashboards to assist teams and leadership.

  • Organize, analyze, and develop detailed asset state and vulnerability reports.

The Cybersecurity Engineer in this position will spend 50% of their time providing vulnerability tracking and reporting.  In this role you are expected to:

• Conduct vulnerability scans at the network, operating system, database, and application levels on both internal and external systems within org’s enterprise

• Generate reports to inform and work with system owners / stakeholders about mitigation steps.

• Create tickets to report (notify) and track mitigation.

• Create exclusions in the vulnerability scanner.

• Resolve tickets after findings have been mitigated.

• Assist engineers with remediation recommendations needed to resolve identified vulnerabilities.

• Assist in the implementation of security tools to security and development environments.

The Cybersecurity Engineer in this position will spend 40% of their time providing development and maintenance support of an internal, enhanced vulnerability database.  In this role you are expected to:

• Create automation scripts using the vulnerability management platform.

• Architect scalable data analysis for assisting and influence engineers with remediation recommendations.

• Create compelling and scalable reporting using the vulnerability information from the vulnerability management platform.

• Create impactful tools for efficient triaging and resolving tickets.

• Develop and implement automation to eliminate End of Life Systems in the organization.

• Analyze the vulnerability findings along with asset information to create impactful decisions and reporting for senior leadership.

The Cybersecurity Engineer in this position will spend 10% of their time focused on process improvement initiatives.  In this role you are expected to:

• Identify situations where our program is not functioning as expected, EX: failed credentials.

• Improve the report process through various means like data exportation or via dashboards.

• Assist with the creation and maintenance of internal tools/scripts for security.

• Facilitate educational opportunities for patching and configuration practices.

• Continuously consider ways to improve the vulnerability management program and our processes.

• Look for ways to streamline or improve the jobs of other teams at our org.

DIVERSITY

At FactSet, we celebrate diversity of thought, experience, and perspective. We are committed to disrupting bias and a transparent hiring process. All qualified applicants will be considered for employment regardless of race, color, ancestry, ethnicity, religion, sex, national origin, gender expression, sexual orientation, age, citizenship, marital status, disability, gender identity, family status or veteran status. FactSet participates in E-Verify.

Returning from a break? We are here to support you! If you have taken time out of the workforce and are looking to return, we encourage you to apply and chat with our recruiters about our available support to help you relaunch your career