Sedgwick invites you to grow your career with us. As a Sr IT Security Advisor, you'll be part of something truly meaningful. Here, you can achieve great things in a collaborative environment.
Job Description
To manage the implementation of security measures, protect company data and networks, execute security fundamentals for threat detection and response efforts.
• Implement and monitor security measures for computer systems and networks.
• Identify and define system security requirements.
• Design computer security architecture and develop cyber security designs.
• Prepare and document standard operating procedures and protocols.
Responsibilities
• Engineers, implements and monitors security measures for the protection of computer systems and networks.
• Identifies and defines system security requirements.
• Designs computer security architecture and develops detailed cyber security designs.
• Prepares and documents standard operating procedures and protocols.
• Configures and troubleshoots security infrastructure devices.
• Develops technical solutions and new security tools to assist in mitigating security vulnerabilities and automating repeatable tasks.
• Leads IT groups and business units as necessary in troubleshooting compatibility issues between security tools and business or productivity programs.
• Analyzes client and customer needs as required and provides clear and concise reports to leadership.
• Experience configuring and managing scan engines, sites, and asset groups.
• Skilled in interpreting vulnerability findings, prioritizing remediation efforts using Real Risk Score and Threat Intelligence.
• Ability to create and manage custom dashboards, reports, and alerts within InsightVM.
• Familiarity with Remediation Projects and tracking progress across teams.
• Knowledge of Live Dashboards and Query Builder for real-time visibility.
• Experience integrating InsightVM with ticketing systems (e.g., ServiceNow, Jira) for automated remediation workflows.
• Understanding of Nexpose scan engine architecture and deployment.
• Ability to use InsightVM APIs for automation and custom integrations.
• Experience coordinating internal and external penetration testing engagements.
• Skilled in scoping penetration tests based on business needs, asset criticality, and threat landscape.
• Ability to liaise between third-party testers, internal teams, and stakeholders to ensure smooth execution.
• Familiarity with test scheduling, resource allocation, and minimizing operational impact.
• Understanding of penetration testing methodologies (e.g., OWASP, NIST SP 800-115, PTES).
• Ability to review and validate test findings, assess risk levels, and prioritize remediation.
• Experience with vulnerability management tools (e.g., Rapid7 InsightVM, Tenable, Qualys) to correlate findings.
• Knowledge of network, application, cloud, and physical security testing scopes.
• Skilled in reviewing and distributing pen test reports, ensuring clarity and actionable insights.
• Ability to track and report on remediation progress, including retesting and closure validation.
• Experience maintaining audit trails and documentation for compliance and governance.
• Familiarity with regulatory requirements (e.g., PCI-DSS, HIPAA, SOX, GDPR) related to penetration testing.
• Ability to align testing efforts with risk management frameworks and security policies.
Eight years of encryption technologies/algorithms, digital forensics, network topologies, and access controls experience or equivalent combination of educated and experience required.
