Javen Technologies, Inc. · 4 months ago
Vulnerability Management - StateRAMP/FedRAMP - Remote
United States
Full-time
Remote
Mid, Senior Level
6+ years expJaven Technologies, Inc. is seeking a detail-oriented and proactive technical individual to support vulnerability monitoring and remediation efforts across Solventum Catalyst environments. The role involves working closely with the Site Reliability Engineering team to identify, assess, and remediate vulnerabilities while ensuring compliance with various security standards.
Information ServicesInformation TechnologyService Industry
No H1B
U.S. Citizen Only
Responsibilities
Monitor vulnerabilities using JIRA and vulnerability management tools such as, but not limited to, Qualys VDMR/WAS/PC, Insight Cloud Sec, CheckMarx, Nexus IQ
May be necessary to manually run reports to verify remediation efforts were successful
Ensure compute replacement and patching processes working as expected; Monitor and remediate any issues with
Automated Lambda assigning latest AMI Ids Automated Auto-Scaling Group EC2 replacement via scheduled scaling or instance refresh Automated Patch Management for long-running non-ephemeral instances
Review reports for failures; identify and remediate issues Review AWS maintenance window for failure details; resolve/test/commit changes as needed
Manually update AWS EKS AMI assignment and nodegroup replacement; will automate process in the future
Assist with software deployments and upgrades. These may include, but not limited to
Solventum application upgrades
Unmanaged third-party application upgrades Managed AWS service (RDS, MSK, etc) upgrades
Remediate vulnerabilities within SLA (Service Level Agreement) guidelines
Manually remediate vulnerabilities that aren't addressed with automated processes above Delegate Qualys WAS (DAST), CheckMarx (SAST) and Nexus IQ (SCA) vulnerabilities to development teams in timely manner
Gather evidence to document compliance with certification programs like StateRAMP, FedRAMP, SOC-2 and Sovlentum's ATO (Authority To Opearte)
Qualification
Required
Bachelor's Degree in Computer Science or similar; otherwise 6+ years of IT experience
Proficiency in AWS services: EC2, EKS, ASG, Lambda, RDS, MSK
Linux operating system administration and package management
Understanding of vulnerability remediation workflows
Familiarity with compliance frameworks: StateRAMP, FedRAMP, SOC-2
Ability to interpret and act on vulnerability reports
Team Collaboration
Strong team player with the ability to work cross-functionally with DevOps, Security, and Development teams
Willingness to share knowledge and support others in troubleshooting and remediation efforts
Excellent written and verbal communication skills
Ability to clearly document findings, remediation steps, and compliance evidence
Analytical mindset with a proactive approach to identifying and resolving issues
Comfortable working independently and managing multiple priorities under tight deadlines
Preferred
Hands-on experience with vulnerability management tools like Qualys VDMR, WAS, PC; CheckMarx; Nexus IQ; Insight Cloud Sec
Currently or previously held FedRAMP clearance or the ability to pass background check to work in FedRAMP environment
Company
Javen Technologies, Inc.
Javen Technologies is a Bloomington based Software Services Company. We specialized in providing software development and IT staffing services.
201-500 employees
Funding
Current Stage
Growth StageLeadership Team
Venkat Kota
CEO
Recent News
Business Journals
2022-10-28
Company data provided by crunchbase