Gartner provides fact-based consulting services, helping clients use and manage IT to enhance business performance. They are seeking a motivated Security Engineer to join their Threat & Vulnerability Management team, responsible for managing vulnerabilities and improving Gartner's security posture through collaboration and innovative solutions.
Collaborate with business stakeholders to design secure applications, test applications for security weakness, and partner on remediation of identified issues.
Work with key stakeholders to identify, respond to, and remediate information security issues.
Coordinate the orchestration, automation, and management of security technologies and platforms.
Own day-to-day life cycle management, including identification and remediation of security vulnerabilities.
Create reasonable and actionable reports showing direct impact to the security posture.
Define and implement meaningful metrics to measure the effectiveness of security controls through KRIs and security scorecards.
Serve as a subject-matter-expert for Threat & Vulnerability Management; act as a first point of contact for critical issues, security risk assessments, third-party audits, and regulatory requirements.
Evaluate business and technical requirements to identify and implement tools, processes, and technologies to improve our security posture in our environments.
Ensure the continuous improvement of existing compliance processes.
Qualification
Required
2+ years of experience in a Security Engineering role with proven experience in Threat & Vulnerability Management, Cloud Security, and Application Security.
Strong independent critical thinking, problem-solving skills, and the ability to consistently evaluate and pivot based on the current organizational priorities.
One or more of the following certifications: CISSP, CISA, CRISC, CCSP, AWS or Azure Security.
Experience using vulnerability scanning technologies, AST platforms, and cloud security tooling.
