Job Description

Prudentials Global Technology team is the spark that ignites the power of Prudential for our customers and employees worldwide. Our organization plays a critical and highly visible role in delivering customer-driven solutions across every area of the company. The Global Technology team is made up of diverse, agile-thinking, and highly-skilled professionals; we use our combined capabilities to enable the organization with innovation, speed, agility, scalability and efficiency.

The Global Technology team takes great pride in our culture where digital transformation is built into our DNA. When you join the Global Technology organization at Prudential, youll unlock a challenging and impactful career all while growing your skills and advancing your profession at one of the worlds leading financial services institutions.

The CSOC Vulnerability Management Team manages vulnerabilities and server non-compliance across all the businesses of Prudential, domestically and internationally. The Vulnerability Management team has an opening for an Operations Analyst who will join our growing team and expanding program. The ideal candidate will have experience working in the vulnerability management space. You will need to have a knowledge and experience with vulnerability management and processes, Windows, Unix and Linux operating systems, configuration management and vulnerability scanning. Knowledge of cloud and infrastructure support systems and network devices such as FW, WAFs, IDS/IPS. Along with your technical knowledge, attention to details and follow-up are core requirements to this role. You should have project management and team-building skills.

This role will provide technical expertise and work directly with various infrastructure teams. You will work with closely with team members for support and management of scanning tools, resolution of configuration and troubleshooting, and assessment. Your role will support the team across the entire life cycle of operations tasks. You will be required to track and work with team members and Linux and Unix support teams for patching and remediation across all the businesses of Prudential as subject matter expert and liaison. This role will also manage special projects and act as lead for junior team members.

Qualifications Requirements:

* Validate proper mitigation controls are in place until remediation activities are complete.
* Act as the point of contact for status updates regarding vulnerabilities across multiple platforms and multiple business groups
* Gold Image Review and patch deployments for Linux/Unix on-prem and cloud and identification and remediation of vulnerabilities specific to infrastructure configurations. SME for application and packages related to Linux/Unix platforms.
* Provide leadership and direction on initiatives relating to information security and the Vulnerability Management Program.
* Demonstrated understanding of Unix/Linux operating system and infrastructure/cloud vulnerability scanning and configuration
* Strong knowledge of security technologies and architecture. Knowledge of IDS/IPS, DNS, DCHP, DMZ architecture, Active Directory, Proxies, Cloud architecture technologies and VPNs to name a few.
* Development, maintenance, and continual improvement of the vulnerability management platform, processes, and technical assessment support. Revise processes and procedures, metrics, and documentation that continue to improve the vulnerability management capability.
* Understanding of threat actors with the ability to articulate how they operate and demonstrate how they subvert common security controls
* Strong understanding of network services, vulnerabilities and attacks. Knowledge of application exploits and vulnerabilities. Knowledge of ports and services typical in configuration of web servers, file servers, and workstations
* Understanding of the OWASP Top 10. Familiarity with vulnerabilities in 3rd party libraries and remediation
* Work with IT peers and business stakeholders to ensure remediation efforts adhere to corporate standards and policies
* Ability to collaborate extensively with engineering teams to help them understand their vulnerabilities and assist them to develop remediation and mitigation strategies.
* You will support implementation and operations best practices while taking ownership of tasks and/or project work-streams, assist and perform analysis and diagnosis of issues related to technology configuration, setup, procedural and/or process challenges, and contribute to deliverables of the team
* Implement security improvements by assessing current situation, evaluating trends, and anticipating requirements.
* Candidates must be familiar with CVEs, CVSS, and Mitre as well as other industry specific vulnerability classification standards, frameworks, and best-practices
Additional Skills and Abilities:

* Identifies opportunities for process and technical security improvements in the environment
* Excellent communication, presentation, writing and documentation skills
* Follow-up and attention to detail.
* Good deductive reasoning skills, creative thinker.
* Analytical and detail-oriented individuals must have a passion for information security, creativity to identify gaps and initiative to find the appropriate solutions to fill needs
* Bachelors degree or higher in IT, CS, IS, with a focus in cyber security. Certifications a plus.

-

Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.

Prudential is a multinational financial services leader with operations in the United States, Asia, Europe, and Latin America. Leveraging its heritage of life insurance and asset management expertise, Prudential is focused on helping individual and institutional customers grow and protect their wealth. The company's well-known Rock symbol is an icon of strength, stability, expertise and innovation that has stood the test of time. Prudential's businesses offer a variety of products and services, including life insurance, annuities, retirement-related services, mutual funds, asset management, and real estate services.

We recognize that our strength and success are directly linked to the quality and skills of our diverse associates. We are proud to be a place where talented people who want to make a difference can grow as professionals, leaders, and as individuals. Visit www.prudential.com to learn more about our values, our history and our brand.

Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status , medical condition or any other characteristic protected by law.

The Prudential Insurance Company of America, Newark, NJ and its affiliates.

Note that this posting is intended for individual applicants. Search firms or agencies should email Staffing at staffingagencies@prudential.com for more information about doing business with Prudential.

PEOPLE WITH DISABILITIES:
If you need an accommodation to complete the application process, which may include an assessment, please call (800) 433-8960, prompt 4 or email accommodation.h&w@prudential.com.

Please note that the above number and email are solely for individuals with disabilities requesting an accommodation. If you are experiencing a technical issue with your application or an assessment, please email careers@prudential.com to request assistance.