People, Person, Crowd

WHAT WE DO MATTERS

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Tenable is more than ‘just’ the creator of Nessus. Our security solutions - including our first cyber exposure platform for modern assets, Tenable.io - are transforming global vulnerability management. We’re a global team, powered by creative thinkers who are wired for action, focused on delivering results and collaborating to enable decisive actions to protect what matters most. We’re in this together - colleagues, customers and partner communities working as One Tenable.

Can you join Team Tenable? Yes you can - if you’re excited by the thought of working with over 1200 colleagues, 27,000 customers and a range of revolutionary products that are shaping cybersecurity in 150 countries. Being valued for who you are as well as what you do, you can embrace the pace (we’re recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte and E&Y) as well as enjoy a superb rewards package (we’re seen as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Baltimore Business Journal and Expert Marketplace). The key question is: Is This You?

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Information Security Engineer

E Santa Clara St. | San Jose | California | United States | 95113

Your Role:

In this role, the Information Security Engineer (Vulnerability Management) will review, coordinate, implement, and maintain vulnerability and configuration scans, policies, and metrics in support of the Vulnerability Management Program. The candidate will work closely with Information Security engineers, analysts, and groups within and outside of Information Security, including business asset owners to help ensure the Confidentiality, Integrity, and Availability of Tenable’s assets.

Your Opportunity:
  • Monitor and maintain enterprise security scanning tools (Tenable Products, Open-Source Scanning, SAST/DAST, etc.).
  • Provide recommendations on remediating host-based and web application vulnerabilities.
  • Conduct manual validation to confirm vulnerability closure.
  • Perform analysis to validate justifications for false positives, operational requirements, and risk adjustments.
  • Provide recommendations to optimize processes and procedures related to enterprise security scanning tools.
  • Serve as a subject matter expert for vulnerability management issue resolution.
  • Communicate vulnerabilities, solutions, and enterprise trends to all levels of an enterprise – technical and non-technical resources.
  • Provide periodic reports detailing scan success, remediation efforts, and vulnerability trends
What You'll Need:
  • 3+ years of experience using a vulnerability assessment tool to configure and run scans
  • Full understanding of the vulnerability management lifecycle and good practices around patch management
  • Familiarity with vulnerability management frameworks and concepts such as CVE, and CVSS
  • Ability to manually validate results identified by automated security assessment solutions
  • Understanding of the Top 10 OWASP (Open Web Application Security Project) vulnerabilities (most critical web vulnerabilities) and how to identify and remediate them
  • 3+ years performing web application scanning and reviewing results
  • Demonstrated knowledge in the planning, development, coordination, implementation, and execution of a vulnerability management program
  • In-depth knowledge of policies, procedures, development, and implementation of vulnerability identification, scanning, analysis, remediation tactics, and reporting within an organization
  • Experience creating system inventories, boundary diagrams, and plans of actions and milestones (POA&M)
  • Experience with common CI/CD and software deployment automation tools
  • Excellent written and verbal communication skills
  • Demonstrable teamwork skills and resourcefulness
  • Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge
  • General understanding of security fundamentals (cryptography, least privilege, segregation of duties) and general security technologies, including operating systems, network security (firewalls, VPNs, etc.), security event management, business continuity, physical security, identity management, directory services, etc.
  • Knowledge of Active Directory, DDNS, Group Policy, Microsoft Windows Server and Desktop operating systems, Linux Operating Systems
  • Strong sense of ownership, urgency, and drive
  • Knowledge of AWS (Amazon Web Services), GPC (Google Private Cloud), Azure, or other cloud platforms and related technologies is desired
  • Familiarity with configuration baseline standards such as CIS & STIG
  • Ability to perform well with minimal supervision
  • Self-motivated while demonstrating a passion for Cybersecurity
And Ideally:
  • BS. or above in related Information Technology field or an equivalent combination of education and experience
  • Security+, CEH, OSCP, GIAC GCIH or other Infosec certifications is a plus
If you’ve reached this point in the job description and feel you’re still not sure if you should apply…Just do it! We know there are no perfect applicants. You may not have 100% of all those bullets listed above - and that’s okay. If you’re feeling like you’re not going to fit in with our teams - that’s not ok. We're One Tenable which means however you identify and whatever background you bring with you, we encourage you to submit an application if it’s a role you can be passionate about doing every day.  

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels. #stack



Apply for this position

Email me about jobs like this

Not ?

Thank you for your interest please submit your application on the next page.

People who viewed this page also viewed

 

Information Security Engineer

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Information Security IT
Your Role:In this role, the Information Security Engineer (Vulnerability Management) will review, coordinate, implement, and maintain vulnerability and configuration scans, policies, and metrics in support of the Vulnerability Management Program. ...

Research Engineer

Baltimore Maryland United States Baltimore, Maryland, United States Research Engineering
Your Role:Tenable is looking for a Research Engineer to join our Asset Detection team. This position will involve researching device and application fingerprints, and developing checks/plugins to identify these assets via our products. The develop...

Information Security Program Manager

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Information Security IT
Your Role:The Information Security Program Manager supports and provides coordination for the Information Security Program and projects portfolio. This includes tracking operational status of programs and projects across the portfolio, and program...

Security Engineer

Mumbai Mumbai India Mumbai, India Sales Engineering Sales
Your Role:Tenable is seeking a Security Engineer to support demos and evaluations of enterprise opportunities across the territory. Assist in developing business value propositions around Tenable's products and solutions. Drives sales with technic...

Associate Security Sales Engineer

San Jose California United States E Santa Clara St., San Jose, California, United States, 95113 Sales Engineering Sales
Your Role:Tenable is seeking a Commercial Sales Engineer to drive Technical and Business value aspects of strategic selling in your assigned region. You will be partnering with Territory Sales Managers and a strong team of peers to: differentiate ...

Software Engineer

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Engineering Engineering
Your Role:Are you excited about the opportunity to work with microservices at scale? Do you like knowing that the changes that you deploy to production will improve the customer experience of many users worldwide? Do you like both the exciting, fa...

Alert me about jobs like this

Not ?

Thank you

Apply for this position

Email me about jobs like this

Not ?

Thank you for your interest please submit your application on the next page.

HQ Summer Picnic

Publically Traded!

Our Women in Tech

Text, Flyer, Poster, Brochure, Paper, Advertisement, Outdoors, Nature