JOB TITLE: Senior Cybersecurity Analyst - Vulnerability Management
LOCATION: Santiago
Working model: Remote
GENERAL DESCRIPTION OR PURPOSE OF JOB:
We are seeking a highly motivated senior level vulnerability analyst to join our information security team. In this hands-on role you will be responsible for identifying, assessing, prioritizing, and driving remediation of vulnerabilities across our enterprise IT environment.
This is a hands-on role requiring strong technical expertise, risk-based decision-making, and collaboration with IT and development teams to reduce enterprise risk and support compliance initiatives. This role will collaborate with the IT infrastructure and security teams to ensure timely remediation of risks and strengthen our overall security posture.
RESPONSIBILITIES / ESSENTIAL FUNCTIONS:
Vulnerability Scanning & Analysis (20%):
- Perform regular and on-demand vulnerability scans on networks, servers, endpoints, cloud systems, and applications using enterprise security scanning products.
- Validate and analyze scan results to differentiate true vulnerabilities from false positives and determine severity, exploitability, and potential business or security impact.
- Correlate findings from multiple sources (e.g., vulnerability scanners, EDR, EASM, penetration testing).
Risk Assessment & Remediation Coordination (40%):
- Prioritize identified vulnerabilities based on risk (CVSS scores, threat intelligence, asset criticality) and partner with cross-functional teams to develop and track remediation plans within SLAs.
- Partner with IT Infrastructure and Application teams to drive remediation within defined SLAs.
- Track remediation progress and enforce accountability through ticketing systems and governance processes.
- Perform root cause analysis for recurring vulnerabilities and contribute to security enhancements.
Vulnerability Management Program Execution (15%)
- Support and enhance the enterprise vulnerability management program, including:
- SLA monitoring and enforcement
- Exception management processes
- Metrics and reporting frameworks
Reporting & Documentation (15%)
- Prepare clear reports and dashboards to communicate vulnerability findings and risk levels to technical and non-technical stakeholders.
- Maintain and update vulnerability management documentation, including scanning procedures, assessment results, remediation status, and compliance evidence.
- Support audit activities by providing evidence and documentation.
Security Tool Management (10%)
- Operate, configure, and maintain vulnerability management platforms, ensuring integration with reporting and other security systems.
- Monitor the health and performance of vulnerability scanning tools and troubleshoot issues.
JOB REQUIREMENTS/SPECIFICATIONS:
Note that (i) computer literacy and working-level skill with the basic MS Office suite (Word, Excel, Outlook, Explorer), (ii) good verbal and written communication skills, (iii) good interpersonal skills, and (iv) the ability to work well both individually and in a team environment are default requirements for all Jostens exempt and salaried nonexempt employees.
Required Skills:
1. 4+ years of experience in vulnerability management in enterprise environments
2. Hands on experience with managing vulnerability scanning tools (Tenable, Qualys, etc).
3. Solid understanding of enterprise IT infrastructure: Operating Systems, Networking Fundamentals, Cloud Environments
4. Experience with risk prioritization and remediation tracking
5. Strong verbal and written communication skills in English
Optional, but nice to have:
1. Relevant industry certifications
2. Bachelor’s degree in information security or related field
3. Experience working within compliance frameworks (PCI DSS, SOC 2, CIS, etc)
Other Benefits:
- Weekly Payment
- 2 way free transportation
- Law Benefits
- Complementary Medical Insurance
- Pharmacy and Optic Center benefits
- Internal Cooperative
- Bonuses Facilities
- Referral Program
- Paid Vacations period
- Growth Opportunities
- Remote
About Jostens:
Celebrating 125+ years of business, Jostens has been a part of local communities, working with K-12 schools, colleges and universities, teams, and affiliation groups. Representatives from Jostens touch thousands of schools and groups every day, working to make a difference with products and services that recognize accomplishments and help people tell their stories. These products, along with resources for educators, yearbook curriculum and services to help motivate and inspire like Jostens Renaissance® and Commitment to Graduate (C2G) are all designed to contribute to a positive and rewarding school experience. As a household name and leading brand in our market, we are passionate about being the most trusted partner in celebrating moments that matter. We are a mid-size company with a small company feel, allowing us to move fast and explore innovative ideas.
Jostens is an Equal Opportunity Employer and complies with applicable employment laws. EOE/M/F/Vet/Disabled are encouraged to apply. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
https://www.jostens.com/about/california-employee-privacy-policy