Vulnerability Management Cover Letter

I submit this application to express my sincere interest in the vulnerability management position.

Previously, I was responsible for information security risk analysis and strategic recommendations for the ongoing improvement of Information Security within the organization.

My experience is an excellent fit for the list of requirements in this job:

• Create and configure Policy compliance scans in Qualys for OS, Databases and Middleware, within Qualys
• Recommend and document reporting improvements
• Detailed technical knowledge in security engineering, system and network security, authentication and security protocols
• Work will be performed out of the client’s facilities in Arlington, VA and Washington DC
• Security Clearance of Active DoD Secret
• Experience with Splunk, QRadar or related SIEM tools
• Experience supporting a large global organization Federal customer experience
• Review operational results and drive improvement/optimization activities

I am excited to be applying for the position of vulnerability management. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for support in the application of network security devices.

Please consider my experience and qualifications for this position:

• Act as an expert providing direction and guidance to process improvements and establish policies
• Skill in SSLDC establishment
• IBM Big Fix, Tenable Security Center, Tenable PVS, HP Web Inspect
• Excellent written and verbal communication skills to include the creation of reports and the manipulation of data using the Microsoft Productivity suite of tools
• Proficiency in Information Security controls (Administrative, Logical, Physical)
• General knowledge surrounding Information Security as applied at multiple layers (Platform, Networking, Mobility, Application, Web)
• Information Security Policies and Procedures
• PCI and Privacy regulatory compliance knowledge

I submit this application to express my sincere interest in the vulnerability management position.

Previously, I was responsible for leadership and facilitate meetings to enable collaboration with product security, threat Intelligence, incident response and operational security teams.

My experience is an excellent fit for the list of requirements in this job:

• Participate and as needed drive weekly operational calls to align current state and future goals
• Experience in network, system, and/or web application attacks and mitigation
• Experience with application security architecture, security testing, and incident response
• Knowledge of score carding and metrics reporting
• Experience with asset discovery and/or asset inventories
• Develop and maintain a dashboard with the current Security Requirements Guides (SRG) and Security Technical Implementation Guides (STIG) and implementation status on DSS environment
• Network & security testing
• Experience with NIST reports

I would like to submit my application for the vulnerability management opening. Please accept this letter and the attached resume.

Previously, I was responsible for technical security assistance to network and help desk personnel in the areas of password management, email security, firewall/IDS configurations, and other relevant topics.

My experience is an excellent fit for the list of requirements in this job:

• Expert knowledge of industry recognized hardening/baseline standards such as DISA STIGS, CIS Benchmarks, Vendor Security Guides, etc
• Proven knowledge of networking fundamentals (all OSI layers)
• Experience with QualysGuard including its API (VM/PC)
• Experience with Symantec Control Compliance Suite (CCS)
• Understanding of CVSS, CVE, CWE, CPE, CCE, CWE, OVAL, SCAP and other standards
• Knowledge of industry recognized hardening/baseline standards such as DISA STIGS, CIS Benchmarks, Vendor Security Guides, etc
• Knowledge of CVSS, CVE, CWE, CPE, CCE, CWE, OVAL, SCAP and other standards
• Typical Physical demands include manual dexterity sufficient to operate basic office equipment

I am excited to be applying for the position of vulnerability management. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for metrics on incidents and vulnerabilities related to Bombardier systems, application, infrastructure and other related security risks.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or other Information Security related certification
• Lead initiatives that enhance company’s audit, risk and information security processes within its GRC and Analytics tools
• Defining and validating hardening standards, baseline security configurations for operating systems, applications, networking and telecommunications equipment
• Knowledge and experience with various IT governance and control frameworks such as NIST, COBIT, COSO, ITIL
• Program custom algorithms
• Experience working with Third Party Penetration Testing providers and leading internal penetration testing efforts
• Manage Technical Team
• Experience identifying basic common coding flaws at a high level