Advisor, Application Security and Vulnerability Management
What We'll Bring
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we are consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius. Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
What You'll Bring
3 + years experience architecting, deploying, and maintaining global scanning infrastructures
Experience with vulnerability management solutions (e.g. Nexpose, Nessus, Qualys, etc.)
Experience with application management solutions (e.g. IBM AppScan, Rapid7 AppSpider, BlackDuck, Veracode, Checkmarx, SonarQubeetc.)
Previous exposure to networking architecture coupled with an understanding of networking fundamentals
Ability to autonomously identify, troubleshoot, and remedy network connectivity and authentication issues to enable consistent and predictable scanning
Ability to deconflict scan schedules to allow optimal scan coverage across disparate environments/locations
Experience deploying and managing scan infrastructure in hybrid on-prem/cloud environments
Experience in Unix/Linux administration and shell scripting
Ability to work independently and collaborate with a remote team in varying locations around the world
Strong communication skills
We'd Love to See:
Familiarization with AGILE development
Familiarization with automated testing technologies
Experience with configuration management systems (e.g. Ansible, Puppet, Salt, JFrog, etc.)
One or more of the following (or similar) certifications: GCIH, GCIA, CISSP, Vulnerability Management/Application Scanner vendor specific certifications
Impact You'll Make
You will be responsible for architecting, deploying, and maintaining a global technology infrastructure to support application and vulnerability scanning. You will play a key role in designing and deploying the infrastructure and processes to establish a global scale scanning environment. You will also be responsible for developing the holistic scan strategy across various architectures and platforms in order to support our Cyber Security teams.
Coordinate with network and application teams to ensure scan port coverage is extended beyond “well-known” ports to include all available ports where feasible
Work with Application Security and Vulnerability Threat Management teams on developing and managing the backlog of needed Application Security and Vulnerability Threat Management requests
Work with Application Security and Vulnerability Threat Management teams to prioritize team requirements, develop execution delivery plans, and design a delivery feedback mechanism for product delivery tracking
Work with security teams and product owners to identify automation and configuration management processes in order to optimize global scanning operations
Develop a comprehensive backup strategy for scanning solutions and perform periodic DR testing to ensure backup efficacy
Identify and document how vuln/app scans are incorporated into infrastructure deployment and CICD pipelines
Collaborate with Application Security and Vulnerability Threat Management teams to develop a scanning infrastructure strategy for long term sustainability and maintainability
Create a comprehensive scanning wiki to capture FAQs and provide greater visibility into TU scanning capabilities
Provide ongoing knowledge transfer and training of scanning capabilities via quarterly demos