Tenable Nessus Engineer

Tenable Nessus Engineer - Remote (UK)

Are you an experienced Tenable Nessus Engineer looking for a challenging 6-month contract within a leading banking institution? We are seeking a dedicated and skilled professional to join our client's security team, focusing on maintaining and optimising their Tenable vulnerability management solution. This is a remote (UK-based), Inside IR35 role.

The Role:

As a key member of a major nationwide organisation's security team, you will be instrumental in the full-time, hands-on administration of their Tenable system and the comprehensive management of vulnerability remediation across their infrastructure. You will leverage your in-depth understanding of Tenable and its components to ensure robust security postures.

Primary Responsibilities:

Your expertise will cover a broad range of critical activities, including:

• Installation & Configuration: Installing and configuring Tenable products such as Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center across Linux/Unix and Windows environments. This includes securing Tenable servers and enabling SSL.
• Integration: Seamlessly integrating Tenable products with LDAP, Active Directory, and CyberArk.
• Platform Management: Creating and managing Tenable Organisations, Repositories, Scan Zones, and handling local and LDAP-based user management.
• Policy & Scan Management: Configuring Tenable plugins/feeds, adding audit files, managing product licensing (online and offline), and configuring scan policies, audit policies, and credentials within Security Center and Nessus Manager.
• Vulnerability Analysis: Defining scan and audit policies, scheduling scans, generating and analysing scan reports, validating scan results, and monitoring/configuring dashboards.

Technical Skills & Competencies:

We are looking for candidates with a strong technical foundation, including:

• Vulnerability Management: 5+ years of experience in vulnerability management, including working with web proxy teams and resolving operational issues.
• Security Controls: Proven experience in designing and implementing enterprise-wide security controls for systems, applications, networks, and infrastructure.
• Security Tools: Hands-on experience with security tools such as network firewalls, web proxy, intrusion prevention systems, vulnerability scanners, and penetration testing tools.
• Networking: A solid understanding of TCP/IP networking concepts and DNS.
• Identity Management: 3+ years of engineering experience with Identity Management tools, including installation, configuration, and troubleshooting of CyberArk, Splunk, or Tenable-Nessus.

Desirable skills and experience:

While not essential, the following would be highly advantageous:

• Previous experience within the financial sector.
• Working experience with security tool sets such as Firewall Assurance, Cloud Access Security Broker (CASB), or Cloud Security Posture Management (CSPM).
• Experience with ITIL processes.
• Working knowledge of Service Now and/or Remedy Ticket Management Systems.
• Industry certifications such as Security+, MCSE, MCSA, or CISSP.