Tenable/Nessus Engineer

Location: Eagan, MN
Date Posted: 03-20-2018
Lunarline is looking for a Tenable/Nessus Engineer who will join the security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network. The ideal candidate for this job will be an experienced information security practitioner who is goal-oriented and strives to exceed expectations.
 
Duties and Responsibilities:
  • Responsible for implementation/deployment/support of Nessus scan engines and Tenable Security Center Continuous View systems and peripherals with Engineering, SOC, TIU, and IR.
  • Maintains local and network credentials Tenable Security Center and provisions access to vulnerability scanning systems.  Responsible for integration of Nessus/TSC with other security and IT systems management tools (i.e. ForeScout, Cisco ISE, RedSeal, Splunk).
  • Responsible for developing and maintaining standard processes and operating procedures, creating technical architecture diagrams and system build documentation.
  • Responsible for supporting penetration testing toolset; including “fly-away kit” (i.e. laptops, VMs, wireless devices) used for internal/external penetration testing.
  • Works with vulnerability management team to build asset repositories and asset scan policies.
  • Create effective dashboards using Splunk, hunting cyber threats using event correlation, and acting on machine intelligence to remediate vulnerabilities and risk to the enterprise.
  • Netflow analytics for compliance and threat hunting
  • Work with suppliers of data (e.g., WonMug, Cisco ISE, StealthWatch) to maximize efficiency and accuracy of data feeds into Splunk.
  • Advise suppliers of potential features in their tools that could be activated to improve security (e.g., TrustSec and Security Group Tagging in ISE).
  • Ability to map application components to identify security problems and provide solutions.
  • Analyze data imports into Splunk for accuracy and completeness; compare data from the various network security tools to identify overlaps and search for gaps.
  • Conduct initial triage assessments of findings from network security tools.
  • Engages with other internal and external forces to get and share information to improve processes and security posture.
  • Troubleshoots application connectivity and performance through log analysis and network captures, etc.
 
Skills/Qualifications:
  • Experience with Splunk, BMC Atrium, ServiceNow, and enterprise network infrastructures
  • Experience with Tenable Nessus, ForeScout CounterACT, Cisco ISE, MobileIron, and Tanium
  • Project planning experience
  • Excellent writing skills
  • Microsoft office suite of applications
 
Minimum Education and Certifications
  • BA/BS in a related field (Can substitute no degree and 5+ years related work)
  • The following certifications (more than one is preferred): Lunarline, Inc. School of Cybersecurity “Certified Expert” certifications, CISSP, CEH, SFCP, GCIA, ISSEP, ISSMP, GCIH, GCFA, CSLC, CISM, CCNA, or CCNP.


Place of Performance:
  • On client site in Eagan, MN

_____________________________________________________________________________________

Disclaimer
  
Lunarline is an equal opportunity employer. It is the policy of Lunarline that all employees and applicants for employment will be treated in all respects on the basis of their merit and qualifications and without regard to their race, color, national origin, age, disability, sexual orientation, religion, gender, military status, marital status or ancestry.
Lunarline participates in the E-Verify program. Therefore, any employment with Lunarline will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. 
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.
 
or
this job portal is powered by CATS