IT Security Analyst II (Vulnerability Management Operations)

At FIS, you’ll have the chance to tackle some of the most challenging and impactful issues in financial services and technology. Our people are our greatest strength, and we foster a culture that is open, collaborative, entrepreneurial, passionate—and yes, fun!

Join a dynamic team of innovative professionals working on cutting-edge projects at the world’s largest global provider of financial technology solutions. This is your opportunity to make an impact in a fast-paced, growth-oriented environment.

• Identify and assess vulnerabilities; collaborate across teams to implement effective countermeasures.
• Monitor and respond to new vulnerabilities detected by internal and external scanners.
• Triage, troubleshoot, and validate scanner findings; coordinate with internal teams for resolution.
• Track and manage remediation efforts for identified vulnerabilities.
• Perform regular patching, maintenance, and system/application upkeep.
• Partner with compliance teams to meet regulatory and audit requirements.
• Develop and report meaningful metrics to strengthen the Vulnerability Management Program.
• Engage in rapid response activities to identify potential attack surfaces vulnerable to emerging threats and zero-day exploits.

• Experience:
  • 2+ years in Vulnerability Management Operations, including tools like Rapid7, Qualys, ASV coordination, and dynamic application scanning.
  • Experience with open-source tools like Nuclei along with writing custom vulnerability signature templates.
  • Hands-on experience with Burp Suite for web application security testing and vulnerability analysis.
• Technical Skills:
  • Strong understanding of OS platforms (Windows, RedHat, CentOS, etc.).
  • Familiarity with network devices (Cisco, AIX, Big5, Citrix, etc.).
  • Basic Python and Bash scripting skills.
  • Working knowledge of ServiceNow Vulnerability Response Module.
  • Working knowledge of SQL queries and PCI DSS compliance.
• Operational Expertise:
  • Experience in enterprise-level InfoSec environments with multi-site setups.
  • Hands-on with scanning, analyzing results, manual verification, and remediation coordination.
• Soft Skills:
  • High passion for security and innovation.
  • Strong problem-solving abilities and cross-functional collaboration skills.
  • Excellent written and verbal communication; strong interpersonal skills.
• Shift Readiness: Ability to work in a 24/5 rotational shift.

CPTS, CRTP, EJPT, or other relevant certifications.

• A multifaceted role with significant responsibility and growth opportunities.
• Access to professional education and personal development programs—FIS is your ultimate career destination!
• Competitive salary and benefits.
• A wide range of career development tools, resources, and opportunities.

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass