Infor

The Sr Security Analyst will be joining the vulnerability management team which is growing and transforming into a service offering for the entire company and partnering with the rest of the Security organization to shape the future of cyber defenses at Infor. Primary responsibility will be to support Vulnerability Management Team at Infor within the ISO team.

A Day in The Life Typically Includes:

• Research vulnerabilities in software, firmware, and devices, and modern exploits and exploitation techniques in the following areas: Microsoft platform, Open Systems platforms, Java, Adobe, Web Applications, Java web app virtualization platforms, Networking, Databases, and others.
• Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood, and impact
• Design correction plans, mitigations, and full remediation actions
• Understand and communicate attack chains to management and other stakeholders
• Collaborate with infrastructure, application and area leads on security hot fixes or patch management validation
• Identify and recommend appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company
• Support the cyber incident response team in specified vulnerability discovery and identification tasks during crisis management.

Required skills:

• Operational experience with various Vulnerability Scanning Applications, vulnerability management, or related information security field
• Knowledge of NIST and ISO 27001 frameworks, SOC1 and 2 Audits
• Federal Risk and Authorization Management Program (FedRAMP) authorization or ability to obtain, experience with achieving and maintaining ATO and understanding of FedRAMP architecture and security controls
• Experience with writing Plans of Action and Milestones (POA&M)
• Demonstrate knowledge of Microsoft platform, Open System platform, Virtualization platforms and Databases, and patch management
• Experience developing and improving KPIs, metrics, and trending for vulnerability management functions
• Automation experience through programming (Java, Python) and knowledge of Cloud concepts (AWS, Azure)

Remote (Alpharetta, Georgia; St Paul, MN or Dallas TX)

About Infor

Infor delivers end-to-end ERP and strategic edge applications that are integrated and delivered in a multi-tenant cloud. We believe that customers need industry-specific solutions and that one size does not fit all.

We are proud to serve more than 68,000 companies worldwide. Infor is a standalone subsidiary of Koch Industries, Inc., which has annual revenues of over $110 billion.

For more information visit www.infor.com