Sr. Threat and Vulnerability Management Engineer
4 weeks ago
Built on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.
It's an exciting time to join Brown & Brown Our business is growing both in North America and internationally which emphasizes the need to build an unparalleled team that promotes future growth. We're excited to continue solidifying that foundation as we are looking for a Senior Threat and Vulnerability Engineer to join our growing team in Daytona Beach, Florida.
As a Senior Threat and Vulnerability Management Engineer, you will oversee our vulnerability management program and ensure our systems' integrity and security. You will be the operational expert in utilizing and managing all Qualys modules to identify and prioritize the remediation of vulnerabilities across our organization. You will work with internal and external security testing groups to coordinate regular red team testing of Brown & Brown assets.
Who We Are: Brown & Brown, Inc. is a growing global insurance brokerage firm delivering risk management solutions and services since 1939. Our unique culture is built on honestly, integrity, innovation and discipline and defines who we are and how we treat our customers, teammates and the communities we serve. We think of ourselves as a team, so we have teammates---not employees. We prioritize health, family, and business---in that order. We embrace and celebrate diversity, always striving to be an inclusive place where you have the power to be yourself. Traded on the New York Stock Exchange as BRO, Brown & Brown is a big company that doesn't act like one.
Who We Are Looking For: We are looking for passionate team players who believe in working hard and having fun in a collaborative environment. Our team is customer-focused and values the importance of strong relationships, professionalism, and trust. We embrace solutions-oriented big thinkers who are committed to results and aren't afraid to take risks. We are driven to set goals high and aim even higher.
General Responsibilities:
Lead the development, implementation, and optimization of our vulnerability management program.
Utilize Qualys to perform regular scans, assessments, and penetration tests to identify vulnerabilities in our systems, networks, and applications.
Collaborate with cross-functional teams to prioritize and remediate vulnerabilities promptly.
Develop and maintain a comprehensive inventory of assets and their associated vulnerabilities.
Create and maintain documentation related to vulnerability management processes and procedures.
Monitor industry trends and emerging threats to enhance our vulnerability management strategies.
Conduct threat modeling and risk assessments to prioritize vulnerabilities based on potential impact and exploitability.
Provide guidance and mentorship to junior team members in vulnerability management best practices.
Ensure compliance with industry standards and regulatory requirements related to vulnerability management.
Knowledge of various security technologies such as vulnerability assessment tools, SIEM, firewalls, proxies, network and host-based intrusion prevention, DLP, etc.
Integrate and leverage threat intelligence sources & partners to maintain an understanding of emerging security threats and advanced threat actor's capabilities.
Assist in selecting, implementing, and managing systems, tools, and processes to keep the firm at the leading edge of security. This includes a continually evolving inventory of gaps to be mitigated and formulating a proactive strategy to evaluate and implement mitigating technologies.
Remain current on emerging security threats and technologies.
Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.
Required Qualifications:
Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
Minimum of 7 years of experience in cybersecurity, with a focus on threat and vulnerability management.
At least 5 years of hands-on experience engineering and managing Qualys, including all Qualys modules.
Expert understanding of vulnerability assessment tools, methodologies, and best practices.
Knowledge of industry standards and frameworks such as CVE, CVSS, CWE, and NIST.
Excellent analytical and problem-solving skills.
Strong communication and interpersonal skills to collaborate effectively with cross-functional teams.
Industry certifications such as CISSP, CISM, or CEH are a plus.
Ability to work independently and manage multiple tasks in a fast-paced environment, organizing and prioritizing as needed to accomplish goals.
Knowledge of protocol analysis and tools (e.g., Wireshark, Nessus, Gigastor, Netwitness, etc.).
Working knowledge of current cyber threat landscape (e.g., threat actors, APT, cyber-crime, etc.).
Working knowledge of Windows and Unix/Linux, Firewall, and Proxy technology.
Knowledge of malware operation and indicators.
Knowledge of forensic techniques.
Knowledge of penetration techniques.
Thinks both tactically and strategically.
Manages uncertainty well – able to assess and act with good enough but imperfect or incomplete information.
Strong written and oral communication skills with the ability to explain technical ideas to non-technical individuals at any level.
Possess a blue-collar work ethic with the willingness to wear many proverbial 'hats' and have a flexible outlook towards your work.
Be competitive and have a performance-based drive to succeed, including self-sufficiency and the ability to work as part of a team.
Have a passion for cybersecurity.
What we offer:
Excellent growth and advancement opportunities
Competitive pay based on experience
Discretionary Time Off (DTO)
Generous benefits package: health, dental, vision, 401(k), etc.
Employee Stock Purchase Plan
Tuition Reimbursement and Student Loan Repayment Assistance
Mental Health Resources
We are an Equal Opportunity Employer. We take pride in the diversity of our team and seek diversity in our applicants.
-
Sr. Threat and Vulnerability Management Engineer
1 month ago
Daytona Beach, Florida, United States Brown And Brown Full timeBuilt on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.It's an exciting time to join Brown & Brown Our business is growing both in North America and internationally which emphasizes the need to build an unparalleled team that promotes future growth. We're excited to continue...
-
Cloud Security Threat Modeling Specialist
2 days ago
Virginia Beach, United States Pibythree Full timeJob DescriptionJob DescriptionCloud Security Threat Modeling Specialist& To fortify our cloud-based infrastructures across AWS and Azure platforms, we are looking to hire a Cloud Security Threat Modeling Specialist. This role is essential in ensuring that the organization shifts left and implements security design principles.Key Responsibilities:Threat...
-
HYBRID - Vulnerability Management Analyst
2 weeks ago
Newport Beach, United States Platinum Resource Group Full timeVulnerability Management Analyst Location; Newport Beach, CA (hybrid, 2-3 days onsite per week) JOB DESCRIPTION Support Vulnerability Management program by working to assess and communicate identified vulnerabilities to stakeholders for remediation. Monitor cyber security news resources for new vulnerabilities. Determine whether vulnerable software is...
-
Sr. Geotechnical Engineer
3 weeks ago
Virginia Beach, United States Sirch Incorporated Full timeOur client acquired an existing Geotechnical Engineering practice in the VA Beach area several years ago. The Lead/Sr. Geotechnical Engineer was one of the Principal's of the business. He will be retiring in February and they are looking for a Sr. Geotechnical Engineer to replace him ASAP. This person will be the "right hand man/woman" to the Office Manager....
-
Vulnerability Management Analyst I
2 weeks ago
Newport Beach, United States Trinus Full timeJob DescriptionJob DescriptionSupport our Vulnerability Management program by working to assess and communicat identified vulnerabilites to stakeholder for remediation. Typical day to day activities would include: Monitoring cybersecurity news resources for new vulnerabilities.Determining whether vulnerable software is in use within Pacific Life.Monitoring...
-
Enterprise Risk Management, Senior Director
3 weeks ago
Daytona Beach, Florida, United States Brown And Brown Full timeBuilt on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.It's an exciting time to join Brown & Brown Our business is growing both in North America and internationally which emphasizes the need to build an unparalleled team that promotes future growth. We're excited to continue...
-
Senior Security Engineer
6 days ago
West Palm Beach, United States Marcum LLP Full timeMarcum LLP offers a great career with exceptional benefits. There’s a lot to think about when it comes to launching your career. At Marcum, we offer you a world of opportunity, a highly competitive salary, exceptional benefits, flexible work options, and industry-leading technology, all within an environment that values your contributions and supports...
-
Sr System Engineer
1 week ago
Monmouth Beach, United States Cardinal Integrated Technologies, Inc. Full timeRole: Sr System Engineer Location: New York 10022 - Hybrid Duration: 12+ Months The position is for senior system engineer with experience of 5+ years. The client suggested to keep their name confidential until MSA is completed with them. This will be a direct client with Cardinal. The position is on hybrid basis where the candidate will have to come to...
-
Automation Engineer
3 weeks ago
Daytona Beach, Florida, United States Brown And Brown Full timeBuilt on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.It's an exciting time to join Brown & Brown Our business is growing both in North America and internationally which emphasizes the need to build an unparalleled team that promotes future growth. We're excited to continue...
-
Sr Data Engineer
7 days ago
Virginia Beach, United States Cloud BC Labs Full timeJob DescriptionJob DescriptionPOSITIONSr Data EngineerLOCATIONRemoteDURATION12+ MonthsINTERVIEW TYPEVideoVISA RESTRICTIONSNoneREQUIRED SKILLSMUST SIT IN ONE OF THESE STATES: NC, CO, CA, UT, AZ, FL, NV, TX, WA, PA10+ years of experience with minimum 7 years in true Data Engineering capacityExcellent T-SQL Programming & SQL ServerSSIS ETLMust have Strong...
-
Principal Vehicle Management Systems
3 weeks ago
Redondo Beach, United States Northrop Grumman Full timeThis position is currently contingent on program award and associated program award funding. Start dates are determined after funding confirmation.Northrop Grumman Aeronautics Systems has an opening for a Principal Vehicle Management Systems (VMS) Engineer Aeronautical or Sr. Principal Engineer Aeronautical to join our team of qualified, diverse individuals...
-
Principal Vehicle Management Systems
3 weeks ago
Redondo Beach, United States Northrop Grumman Full timeThis position is currently contingent on program award and associated program award funding. Start dates are determined after funding confirmation.Northrop Grumman Aeronautics Systems has an opening for a Principal Vehicle Management Systems (VMS) Engineer Aeronautical or Sr. Principal Engineer Aeronautical to join our team of qualified, diverse individuals...
-
Principal Vehicle Management Systems
3 weeks ago
Redondo Beach, United States Northrop Grumman Full timeThis position is currently contingent on program award and associated program award funding. Start dates are determined after funding confirmation.Northrop Grumman Aeronautics Systems has an opening for a Principal Vehicle Management Systems (VMS) Engineer Aeronautical or Sr. Principal Engineer Aeronautical to join our team of qualified, diverse individuals...
-
Cybersecurity Engineer
2 days ago
Ponte Vedra Beach, United States PGA TOUR Full timeThe Best Players Need the Best People. As a Cybersecurity Engineer, you will be responsible for ensuring the security of our organization's technology systems and data. You will be a leader of and work with our team of IT professionals to develop and implement, tune, manage, and maintain cybersecurity system, process, policies, and procedures to protect...
-
Senior Information Security Operations Analyst
1 month ago
Deerfield Beach, United States JM Family Enterprises Full timeThe Senior Information Security Operations Analyst is a member of the Information Security department and plays a pivotal role serving as the technical escalation resource for all Tier I/II analysts and engineers. As a Sr. Cyber Security resource you will investigate, assess, and document cyber threat and attack events to aid in the protection from new...
-
Product Security Architect
2 weeks ago
Monmouth Beach, United States Cardinal Integrated Technologies, Inc. Full timeProduct Security Architect RESPONSIBILITIES This position is responsible for designing and implementing software security controls in an implantable neuromodulation system, including: mobile applications used by physicians and patients, firmware for implantable pulse generators and communication wands, supplemental services, such as cloud-based...
-
Field Service Engineer
1 month ago
Daytona Beach, Florida, United States Brown And Brown Full timeBuilt on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.Brown & Brown is looking for a Field Service Engineer to join our growing team. As a member of the Brown & Brown Information Technology team, you will provide internal support for employees at the local office as well as...
-
Director, Business Continuity
3 weeks ago
Daytona Beach, United States TopBuild Full timeWe are looking for individuals who are eager to develop and apply their skills in ways that make a positive impact to communities. Here, you'll be proud to be a part of a company known for putting safety and people first, combined with uncompromising integrity. Job Description Build your future with TopBuild, where talent meets opportunity! TopBuild Corp....
-
Sr Information Security Analyst
1 week ago
West Palm Beach, United States Vets Hired Full timeAbout the job Sr Information Security Analyst (Remote) This position has the potential to work remotely within the Eastern or Central US timezones. WHAT YOULL DO:Basic administration and management of security operations solutions and programs, such as our database security program, PKI and SIEM management Provide standards compliance monitoring and...
-
Cybersecurity Engineer
4 weeks ago
Ponte Vedra Beach, United States teamworkonline Full timeThe Best Players Need the Best People.As a Cybersecurity Engineer, you will be responsible for ensuring the security of our organization's technology systems and data. You will be a leader of and work with our team of IT professionals to develop and implement, tune, manage, and maintain cybersecurity system, process, policies, and procedures to protect...
