Company Description
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more. Experian invests in people and new advanced technologies to unlock the power of data. We have an amazing team of 25,200 people in 32 countries.
Job Description
-
Work with infrastructure, application, and cloud teams to assess and maintain the usability and efficacy of vulnerability reporting.
-
Assist in prioritizing remediation efforts using frameworks such as CVSS, EPSS, and organizational risk criteria.
-
Work with infrastructure, application, and cloud teams to coordinate vulnerability remediation and verify fixes.
-
Advise on the feasibility of remediation efforts within established service-level agreements (SLAs).
-
Monitor emerging vulnerabilities, zero-day threats, and vendor security advisories.
-
Produce reports and dashboards that communicate vulnerability trends, risk metrics, and remediation status to technical teams and leadership.
-
Assist with vulnerability exception reviews and risk acceptance documentation.
-
Maintain vulnerability management processes, documentation, and standard operating procedures.
-
Support compliance initiatives including PCI DSS, ISO 27001, SOC 2, NIST, HIPAA, or CIS Controls, as applicable.
-
Participate in incident response by providing vulnerability analysis and remediation recommendations when needed.
-
Recommend security reporting improvements that reduce recurring vulnerabilities and improve overall security posture.
Qualifications
-
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience.
-
2–5+ years of experience in vulnerability management, cybersecurity, or information security.
-
Experience with vulnerability management tools such as:
-
Tenable Nessus
-
Qualys VMDR
-
Rapid7 InsightVM
-
Microsoft Defender Vulnerability Management
-
Wiz.IO
-
Axonius
-
Panaseer
-
Understanding of:
-
CVSS scoring
-
CWE
-
CVE
-
MITRE ATT&CK Framework
-
OWASP Top 10
-
Common operating systems (Windows, Linux, macOS)
-
Cloud platforms (AWS, Azure, or GCP)
-
Understanding of patch management cycles and how they tie to remediation SLAs.
-
Ability to analyze technical data and communicate risk effectively to both technical and non-technical stakeholders.
-
Strong analytical, documentation, and problem-solving skills.
-
Experience working across security domains (vuln management, plus possibly identity, endpoint, or compliance metrics) is a plus.
Additional Information
Preferred Qualifications
-
Security certifications such as:
-
CompTIA Security+
-
CySA+
-
GSEC
-
CISSP
-
GIAC certifications
-
Experience with scripting using PowerShell, Python, or Bash.
-
Familiarity with SIEM, EDR, and SOAR platforms.
-
Experience working in Agile or DevSecOps environments.
-
Knowledge of vulnerability prioritization using threat intelligence and exploit data.
Our uniqueness is that we celebrate yours. Experian's people first, inclusive and purpose driven culture is multi award-winning; World's Best Workplaces™ 2025 (Fortune Global Top 25), Great Place To Work™ in 26 countries to name a few. Check out Experian Life on social or explore our Careers Site to understand why. Experian is also proud to be an Equal Opportunity and Affirmative Action employer. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
Experian Careers - Creating a better tomorrow together
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here