Job Description

Noble Corporation is looking to hire a Security Analyst to assist with the development, implementation and assurance of adherence to Noble’s security and technology framework relating to ICS environments across Noble’s fleet. Work closely with internal and external stakeholders to help build and maintain an effective security program focused on protecting the confidentiality, integrity, and availability of Noble’s cyber assets, and mitigate risk across all ICS environments. Serve as a contributor providing operational support for risk management, regulatory compliance, and policy implementation.

ESSENTIAL FUNCTIONS

• The senior security analyst will be responsible for applying vulnerability management principles and best practices to proactively protect and maintain the confidentiality, integrity, and availability of computing environment.
• Ensures continuous vulnerability lifecycle management with detecting, monitoring, and reporting vulnerability data. Provides engineering support and enhancements for a global vulnerability management program. Support includes run books, scan templates, scan scheduling, scanning networks and advanced scanning authentication (secrets and certificates).
• Drives requirements, evaluations, implementations, and troubleshooting of vulnerability management capabilities. These capabilities support a global vulnerability management program. Responsibilities include documenting engineering processes and practices that supports cyber security operations. Supports vulnerability management team with establishing individual goals that support overall objectives.
• Assesses current and emerging threats, cyberattacks, and zero-day vulnerabilities that pose risks. Supports compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risks.
• Provides communication and interfacing with leadership, driving vulnerability management engineering best practices, and representing the technology risk management program.
• Strategically architect vulnerability collection points and scanners that provide visibility and data centers, DMZ networks, endpoints and IoT devices
• Identified vulnerability data is aligned with DTCC asset management to identify critical assets combined with threat data to assist with completing a risk equation, or a risk value

QUALIFICATIONS

• Information Security Certifications related to vulnerability management like CISSP, CISA or CRISC.
• Bachelor’s Degree or equivalent.
• Familiarity with iec-62443 and NIST 80-82
• Experience in public cloud vulnerability, on-prem and understanding of public IP space and perimeters.
• Experience in Information Security Risk Management frameworks and best practices for Vulnerability management, Risk Analysis, Reporting Metrics and Assessments.
• Minimum 4 plus; years of experience in Cybersecurity and vulnerability management
• Experience working with tools such as Rapid 7, Crowdstrike, asset discovery and threat intelligent.
• Provide Support and report to Information Security and Compliance Manager
• Excellent written and communication skills
• Ability to travel to various offshore rig and international office location 10-15% per annum.

Job Tags

Similar Jobs