Security Analyst

TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers’ compensation insurance.

The Security Analyst, Vulnerability Management position is responsible for ensuring the overall effectiveness of the Vulnerability Management program.

Design, execute, and troubleshoot discovery scanning of endpoints, optimizing asset management, scan schedules, and scanner health within Microsoft Defender for Vulnerability Management
Design, execute, and troubleshoot vulnerability scanning on endpoints, optimizing and troubleshooting scan policies within Microsoft Defender for Vulnerability Management
Develop, deploy, and maintain vulnerability scanning architecture, including but not limited to Microsoft Defender for Vulnerability Management sensors, scanners, licensing, and hardware/VM requirements
Filter and read through vulnerability scan results in Microsoft Defender for Vulnerability Management, resolve incomplete scan results, and manage false positive vulnerabilities
Create tags in Microsoft Defender for Vulnerability Management to add business context to assets/endpoints
Develop template and/or custom dashboards within ServiceNow to help build statistics; For example, the most vulnerable assets, vulnerability affecting most endpoints, and/or risk posture improvement
Configure and operate network vulnerability scanning tools and create reports that communicate scan results and recommended remediation actions
Leverage metrics terminology to understand EPSS, CVSS 2.0, CVSS 3.0, NIST and other framework methodologies
Thorough usage of Python and KQL (Kusto Query Language) utilizing data science methodologies for exporting and manipulating vulnerability data
High-level understanding of the threats that vulnerabilities have to their network environment, including analysis and impact
Coordinate with other teams to validate and make sure patches took effect on managed endpoints
Recast severity of and/or accept the risk of a vulnerability within Microsoft Defender for Vulnerability Management, as needed
Use cybersecurity expertise to deliver accurate, complex security reports that can be understood by business system owners, executives, and other stakeholders

5+ years for HS, 2+ years for BS
Vulnerability management, cybersecurity operations-Preferred
Licenses and Certifications
Licenses/Certifications Details-Required/Preferred
Security+-Preferred
CISSP-Preferred
GIAC Enterprise Vulnerability Assessor (GEVA)-Preferred
CEH Certification-Preferred