Join us in bringing joy to customer experience. Five9 is a leading provider of cloud contact center software, bringing the power of cloud innovation to customers worldwide.
Living our values everyday results in our team-first culture and enables us to innovate, grow, and thrive while enjoying the journey together. We celebrate diversity and foster an inclusive environment, empowering our employees to be their authentic selves.
We are seeking a highly skilled and experienced Vulnerability Management Engineer to join our growing Vulnerability Management Program within the Information Security team. The ideal candidate will have extensive experience with Rapid7 and Qualys vulnerability management systems and will play a critical role in supporting our organisation's compliance with the Payment Card Industry Data Security Standard (PCI-DSS) for vulnerability management.
Key Responsibilities:
- Conduct regular vulnerability assessments and manage the vulnerability lifecycle from identification to resolution.
- Collaborate with cross-functional teams to identify and prioritise vulnerabilities and develop effective remediation plans.
- Support PCI-DSS compliance efforts related to vulnerability management.
- Develop and maintain vulnerability management policies, procedures, and documentation.
- Provide expert guidance on vulnerability management best practices.
- Conduct trend analysis and produce reports for management on vulnerability findings and remediation progress.
- Analyse data from various sources to identify vulnerabilities, trends, and potential threats. Utilize data analysis tools and techniques to generate detailed reports, dashboards, and actionable insights that inform and enhance the vulnerability management strategy.
- Automate vulnerability assessment and reporting processes where feasible.
- Participate in security incident response activities as required.
- Stay current on industry trends, emerging threats, relevant technologies, and best practices in vulnerability management to adapt the program.
Requirements:
- Bachelor's degree in Computer Science, Information Security, or related field.
- Minimum of 3 years of experience in vulnerability management, including hands-on experience with Rapid7, Qualys, Nessus, and Wiz.
- Strong understanding of PCI-DSS requirements related to vulnerability management.
- Experience with tools like Excel, SQL, Python, and data visualisation platforms to analyse security data, identify trends, and present findings effectively.
- Excellent analytical and problem-solving skills.
- Strong communication and collaboration skills.
- Ability to handle sensitive information with integrity and confidentiality.
- Relevant certifications such as CISSP, CISM, CEH, or similar are highly desirable.
Preferred Skills:
- Experience in a regulated industry, especially financial services.
- Knowledge of other security domains beyond vulnerability management.
- Experience with cloud security and hybrid environments.
- Familiarity with US and International regulatory compliance frameworks beyond PCI-DSS.
- Experience with scripting and automation tools.
Benefits:
- Five9 Shares
- Bonus Scheme
- 10% Flexi Benefit
- Meal Allowance
- Medical Insurance
- Life Insurance
- 25 day Annual Leave + Public Holidays
#LI-RS1 #LI-Hybrid
Five9 embraces diversity and is committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better we are. Five9 is an equal opportunity employer.
Our headquarters are located in the San Francisco Bay Area with global hubs in the United Kingdom, Germany, Philippines, Portugal, and Australia.
View our privacy policy, including our privacy notice to California residents here: https://www.five9.com/pt-pt/legal.
Note: Five9 will never request that an applicant send money as a prerequisite for commencing employment with Five9.