Track Lead - NESSUS, Compliance Remediation

Job Summary

Owns the risk-scoring engine that takes scanner output and produces a prioritised, routed remediation queue. Calibrates inputs jointly with SG, monitors model performance, and triggers surge response when KEV or actively exploited findings appear in scope.

Key Responsibilities

• Maintain the composite risk-scoring model: CVSS, EPSS, KEV, asset criticality, exposure, identity tier, compensating controls, effort estimate.
• Calibrate model weights jointly with SG during Phase 1 and re-tune quarterly against observed outcomes.
• Route each finding to the correct remediation path (patch, configuration, hardening, mitigation, exception, verification).
• Monitor exploit-intel feeds; trigger surge response when active exploitation enters scope.
• Maintain the exception register: justifications, compensating controls, expiry, re-review.
• Brief Operations Lead daily on top-risk items and queue health.

Skill Requirements

• Deep working knowledge of CVSS v3.1 / v4, EPSS, and CISA KEV catalogue.
• Experience with vulnerability management platforms (Tenable, Qualys, Rapid7) and Sec Ops suites (Service Now VR).
• Comfortable building scoring models, weighting schemes, and routing logic.
• Threat-intelligence consumption: MISP, ISACs, vendor advisories.

Other Requirements

• Threat-modelling experience (STRIDE / attack trees) in a banking environment.
• Scripting (Python / PowerShell) for queue orchestration.