Conduct work to implement enterprise vulnerability management standards and processes in ServiceNow utilizing their Vulnerability Response (VR) Module.
Build an understanding of vulnerability management and software management processes, related controls, and key roles and responsibilities. Create and maintain documents and flowcharts that illustrate those processes.
Identify solutions to improve vulnerability management automations and coordinate the effort to implement those solutions.
Develop understanding of different sources of inventory, security requirements, project tracking, evaluating security exceptions, risk scenarios, and proposing solutions.
Understand data relationship between different sources to identify data quality issues and propose solutions. Perform tool configurations, customizations, metrics definition, analysis, and reporting.
Translate business needs and articulate discoveries into user stories or work items for development teams. Be involved in the design of software solutions to ensure they are practical, sustainable, secure and address user needs.
Engage and work directly with users, onboard users to tools, provide user support, perform user acceptance tests, and troubleshoot tool issues.
Technical requirements:
Understanding of ServiceNow CMDB, CSDM, and VR
Understanding of Vulnerability Management Scanners
Understanding of control frameworks such as ISAE, PCI-DSS, ESMIG, etc.
Experience within the security automation domain and industry standard methodologies