| 
		
		
		IT Infrastructure/Nessus
		
	 
 
	1. Nessus (Tenable.sc and Tenable.io) a. Generate/distribute server, external IP, network devices and desktop/thin client vulnerability reports b. Work with IT on Vulnerability Remediation /Compliance Scans c. Certification/Accreditation (assets, environments and golden templates) d. CIS baseline configuration compliance reviews (Hardening standards) e. Work on CIS audit files to create custom checks (knowledge required – Powershell, Regex, Perl, Extended POSIX) f. Administer Assets, Reports, Scans, Policies, Organizations, Repositories, User management, and Dashboards to achieve efficient and complete reporting g. Automate vulnerability and compliance checks reporting (Programming skills preferred) 2. Splunk a. Create alerts and reports, leveraging Splunk Search Processing Language (SPL) b. Administer Splunk Dashboards and create custom charts and search panels c. Create custom user roles and provision new users 3. CyberArk a. Provision and decommission of assets b. Administer PrivateArk client, CyberArk platforms, User management, Safe management, Accounts management c. Troubleshoot and remediate accounts and platforms (Windows, Linux, Database, Applications) 4. Alerts/Tickets Management a. Service Manager & Service Now b. Phishing c. DLP d. TAP e. Splunk (security/compliance type of alerts) f. Malware 5. IR/manual vulnerabilities task (low-medium severity) a. Generate and manage incident to completion (note: most incidents are generated from alerts – policy violation, confirmed virus, e.g.) b. Analyze security risks and incidents, leveraging CyberArk, Splunk and Tenable | ||||||