Citrix Systems Inc. Security Engineer, Vulnerability Management in United States
We believe work is not a place, but rather a thing you do. Our technology revolves around this core philosophy. We are relentlessly committed to helping people work and play from anywhere, on any device. Innovation, creativity and a passion for ever-improving performance drive our company and our people forward. We empower the original mobile device: YOU!
Location:Fort LauderdaleRequisition:R21075 Security Engineer, Vulnerability Management (Open)Job Posting Title:Security Engineer, Vulnerability Management
What we're looking for:
What we are looking for:
You are a talented Security Engineer - Vulnerability Management who would be accountable for the vulnerability management lifecycle throughout the Citrix environment for the detection, prioritization, and remediation of vulnerabilities. You would provide subject matter expertise on Patch and Vulnerability Management including leveraging best in class tools and partners for scanning and testing. You would provide direct high-level analysis of specific or broad-scope security issues and risks identified by key systems and other sources. You would produce analysis and reporting of cyber security risks and trends to inform decision-making processes and the holistic cyber security risk posture of the company. Oversee the risk-ranking process of newly identified vulnerabilities for prioritization and development of remediation plans. You would regularly participate in vulnerability management, threat identification, and/or deep dive research projects as assigned to challenge assumptions and articulate true, proven cyber security risk within the company.
Citrix Security is responsible for securing Citrix assets worldwide. This role reports to the Manager, Security Operations and will be focused on Cyber Security Operations – Vulnerability Management. Goals and objectives are set by senior security leadership and documented in annual Priorities, strategic plans, and operational runbooks (e.g. scanning and facilitation of patch management activities) to ensure security operations standards are not only upheld, but progress to a higher level of security maturity.
Assess current state of Vulnerability Management and the enterprise Qualys implementation and immediately identify shortfalls, followed by documented prioritization of work and a clear timeline for achieving a higher level of maturity
Develop detailed step by step runbooks with clear requirements from maintenance and scanning with Qualys to documentation of work outputs and outcomes
Partner with IT and other business functions to ensure vulnerabilities are tracked and vulnerable systems are patched in a timely manner
Deliver weekly analytics reports in current reporting style
Drive the development and implementation and refinement of a vulnerability management strategy
Escalate aged vulnerabilities to senior management
Provide oversight and guidance to Security and IT teams
Requires practical knowledge of job area typically obtained through advanced education combined with experience.
Typically requires a University Degree or equivalent experience and minimum 2 years of prior relevant experience; or an advanced degree without experience Bachelor’s degree in Information Systems, Information Technology, or equivalent years of on the job experience (as noted below)
2+ years of experience in technology and security operations
Strong understanding of the Qualys, vulnerability management application suite
Experience with metrics and measurement, automation and orchestration technologies
Exemplary interpersonal, and written and verbal communications skills; able to work in a collaborative, team-oriented environment
Ability to win trust and respect of management and partners from other functions and lines of business.
Excellent analytical, problem solving, decision making, and crisis control skills
Extensive experience with the creation and delivery of effective and compelling presentation materials to senior management.
Qualys VM, AV, TP, CA, PC(I), WAS, CS Certifications is preferred
Other industry security certifications a major plus
What you’re looking for:
Our technology is built on the idea that everyone should be able to work from anywhere, at any time, and on any device. It’s a simple philosophy that guides everything we do — including how we work. If you’re an engineer, we’ll give you plenty of ways to test your skills on cutting edge technology. We want employees to do what they do best, every day.
Be bold. Take risks. Imagine a better way to work. If this sounds like you then we’d love to talk.
Functional Area:Incident Response
Citrix is a cloud company that enables mobile workstyles. We create a continuum between work and life by allowing people to work whenever, wherever, and however they choose. Flexibility and collaboration is what we’re all about. The Perks: We offer competitive compensation and a comprehensive benefits package. You’ll enjoy our workstyle within an incredible culture. We’ll give you all the tools you need to succeed so you can grow and develop with us.
Citrix Systems, Inc. is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination on the basis of age, race, color, gender, sexual orientation, gender identity, ethnicity, national origin, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions, marital status, protected veteran status and other protected classifications.
Citrix uses applicant information consistent with the Citrix Recruitment Policy Notice at https://www.citrix.com/about/legal/privacy/citrix-recruitment-privacy-notice.html
Citrix welcomes and encourages applications from people with disabilities. Reasonable accommodations are available on request for candidates taking part in all aspects of the selection process. If you are an individual with a disability and require a reasonable accommodation to complete any part of the job application process, please contact us at (877) 924-8749 or email us at ASKHR@citrix.com for assistance.
If this is an evergreen requisition, by applying you are giving Citrix consent to be considered for future openings of other roles of similar qualifications.
Citrix (NASDAQ:CTXS) aims to power a world where people, organizations and things are securely connected and accessible to make the extraordinary possible. We help customers reimagine the future of work by providing the most comprehensive secure digital workspace that unifies the apps, data and services people need to be productive, and simplifies IT’s ability to adopt and manage complex cloud environments. With 2017 annual revenue of $2.82 billion, Citrix solutions are in use by more than 400,000 organizations including 99 percent of the Fortune 100 and 98 percent of the Fortune 500.