Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a video tour of our global network of 24/7 Security Operations Centers (SOCs).
Proficio has been highlighted in Gartner's Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed Security Services Providers (MSSPs).
We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and security posture gap analysis.
Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively harness technology and build hardened processes that reduce the risk of security breaches.
While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.
Proficio's commitment to developing and promoting our team members is unparalleled in our industry. Most of our senior managers were promoted from within.
Proficio is working with an APAC client to provide dedicated support in the Vulnerability Management area. We seek an Analyst to work in the following areas:
- Honeypot deployment, maintenance, and Threat analysis
- Deploy honeypots using open-source solutions for both on-premises and cloud environments
- Implement and configure security solutions to monitor and detect malicious activities
- Regularly review and fine-tune security policies to ensure they are effective and efficient
- Develop comprehensive threat response runbooks and automation playbooks for streamlined incident handling
- Attack and Breach Response Testing
- Design and conduct annual attack and breach response tests to evaluate the resilience of the system
- Develop an action plan to address any identified vulnerabilities and track the progress of remediation efforts
- Vulnerability tracking and remediation support
- Monitor and analyze Qualys scan findings to provide enriched remediation recommendations
- Offer detailed feedback on disputed findings to ensure accurate vulnerability management
- Execute quarterly automated scans for all external-facing applications (up to 300) and document the findings using PlexTrac
- Achieve 100% scanning coverage of digital assets within the vulnerability scanners
- Maintain an up-to-date asset inventory mapping to reflect the current state of digital resources
- Keep ServiceNow records current to facilitate effective asset and incident management
- Threat Intelligence Tracking and Reporting
- Monitor threat intelligence feeds using existing tools and open-source platforms to stay ahead of potential vulnerabilities
- Generate and disseminate advisories within 48 hours of identifying significant threats
- Track and report on the remediation progress of issues highlighted in advisories to ensure timely resolution
Requirements
- 2+ years experience working in a Qualys Cloud environment
- 2+ years previous work in honeypot deployment, breach and attack response testing, and threat intelligence research/reporting
- Work history should include Qualys scanner and agent deployment, scheduling and running of ad hoc and regular environment scans, and remediation review and execution work
- Excellent presentation skills, ability to communicate technical concepts in a clear and concise manner, strong organizational skills
- PlexTrac and ServiceNow experience is a plus
- Education in cybersecurity and / or overall experience in networking engineering, SIEM technologies, and pen testing are all pluses
Benefits
- Opportunity to work in a progressive organization with structured training and roadmap for success
- Health benefits, lunches, gym reimbursement, and internet funding for our India staff!
- Experience in one of the hottest IT industries today
Proficio is an EOE employer.
Proficio collects certain personal information upon your submission of an application for an open position. More information is available about your consumer rights and our privacy policy at www.proficio.com/privacypolicy