Tenable Nessus Engineer
Posted 1 week ago by Experis
£660 Per day
Inside
Hybrid
Knutsford, Cheshire
Summary: The Tenable Nessus Engineer role involves maintaining the Tenable tool and managing vulnerability remediation for a major nationwide organization. The position requires hands-on administration of the Tenable system, including installation and configuration of various Tenable components across different environments. The ideal candidate will have extensive experience in vulnerability management and security tools, contributing to the security team's efforts in a consulting and technology services context.
Key Responsibilities:
- Install and configure Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on Linux/Unix and Windows environments.
- Secure the Tenable server and enable SSL.
- Integrate Tenable products with LDAP, Active Directory, and CyberArk.
- Create Tenable Organizations, Repositories, and Scan Zones.
- Manage local and LDAP-based user accounts.
- Configure Tenable plugins/feeds and add audit files.
- License the product both online and offline.
- Add scan policies, audit policies, and credentials to Security Center and Nessus Manager.
- Configure Nessus Manager scan pulls to Security Center.
- Import and add dashboards.
- Define scan policies and audit policies.
- Add scan credentials and schedule scans.
- Generate scan reports and analyze scan results.
- Monitor dashboards and define/configure them.
Key Skills:
- 5+ years of experience in vulnerability management and operational issues.
- Experience in designing and implementing enterprise-wide security controls.
- Hands-on experience with security tools such as firewalls, web proxies, and vulnerability scanners.
- Understanding of TCP/IP networking concepts and DNS.
- 3+ years of experience with Identity Management tools like CyberArk and Splunk.
- Desirable: Previous experience in the financial sector.
- Working knowledge of security tool sets and ITIL processes.
- Familiarity with Service Now and/or Remedy Ticket Management Systems.
- Relevant certifications such as Security+, MCSE, MCSA, CISSP.
Salary (Rate): £660/day
City: Knutsford
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT
Role Title: Tenable Nessus Engineer
Duration: 5 Months
Location: Knutsford (3 Days Per Week)
Rate: £660 Per Day - Umbrella only
Would you like to join a global leader in consulting, technology services and digital transformation?
Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms.
Role purpose / summary
As an experienced Nessus Engineer responsible for maintaining the tool and the remediation of vulnerabilities across the bank. We are looking for an individual who will join the security team of a major nationwide organization, who understands Tenable and its various components. While having experience with implementing the Tenable solution key, this job also requires full-time hands-on administration of the Tenable system as well as managing the vulnerability management aspect of the tool.
Installing and Configuring Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both Linux/Unix and Windows based environments
Responsible for installing and configuring Nessus Agents
Secure Tenable server an Enable SSL
Integrating Tenable products with LDAP, Active Directory, and CyberArk.
Responsible for the creation of tenable Organizations, Repositories, and Scan Zones.
Responsible for local and LDAP based user management.
Responsible for configuring tenable plugins/feeds and adding audit files
Responsible for licensing the product both online and offline.
Responsible for adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager.
Responsible for configuring Nessus Manager scan pulls to Security Center
Responsible for importing and adding dashboards
Tenable-Nessus Security Analyst
Responsible for defining scan policies and audit policies
Responsible for adding scan credentials
Responsible for Scheduling scans
Responsible for Generating Scan Reports
Responsible for the Analysis and validation of the scan results.
Responsible the Monitoring the dashboards.
Responsible for defining and configuring dashboards
Technical Skills & Competencies:
5+ years of experience in Vulnerability management domain and experience with working with web Proxy teams and working on vulnerability assessment operational issues
Experience in the design and implementation of enterprise-wide security controls to secure systems, applications, network, or infrastructure services
Hands-on experience with security tools and devices such as network firewalls, web proxy, intrusion prevention system, vulnerability scanner, and penetration testing tools.
Demonstrated understanding of TCP/IP networking concepts and DNS.
3+ years of related Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with one or more of these tools:
CyberArk
Splunk
Tenable-Nessus
Desirable:
Previous experience in the financial sector.
Working experience of security tool sets e.g Firewall Assurance, Cloud Access Security Broker (CASB), Cloud Security Posture Management (CSPM)
Experience with ITIL processes
Working knowledge of Service Now and/or Remedy Ticket Management Systems.
Security+ Certification, MCSE, MCSA, CISSP, or better
All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!