• Staff Vulnerability Analyst

    Job Locations US-MA-Boston | US-CA-Goleta
    Information Technology
  • Overview

    LogMeIn is looking for a Staff Vulnerability Management Analyst to support the scaling and maturing of the Vulnerability Management Program. As part of the Information Security team, the Vulnerability Management Analyst will ensure that system vulnerabilities are properly and timely identified, validated, mapped, tracked, reviewed, and reported with the goal of keeping LogMeIn’s infrastructure as secure as possible. The ideal candidate will have experience with Commercial testing tools (Rapid 7’s Nexpose, Nessus, Qualys etc.), as well as a programming and scripting background for application and infrastructure penetration testing.


    • Provide and manage vulnerability scanning, reporting, guidance, support and metrics on vulnerabilities, remediation, and compliance activities of LMI’s corporate and cloud environments
    • Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood and impact to business
    • Research and analyze vulnerabilities, identify relevant threats, recommend corrective actions, and summarize and report on results.
    • Identify and resolve any false positive findings in assessment results.
    • Validate remediations by reviewing application updates or deployed mitigations to verify resolution.
    • Collaborate weekly or as needed with security partners to foster team relations and share ongoing initiatives, tracking items, trend information identified, etc.
    • Communicate and interact with internal customers, vendor service providers, and functional peer groups verbally and through electronic correspondence to gain cooperation of others
    • Work and gather requirements with the lead of Vulnerability management and the Threat Intel Program to ensure the level of research efforts, trend requirements, or cyber threat reports are in line with group initiatives or leadership requests.


    • Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server and database security
    • Experience with Vulnerability management solutions such as Tenable Nessus, Rapid7 Nexpose, Qualys, as well as Cloud technologies such as AWS, Azure, and Google.
    • Robust knowledge of industry standards regarding vulnerability management including Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS) and Open Web Application Security Project (OWASP)
    • Strong foundational knowledge of computer hardware/operating systems, such as Windows, Linux Servers (Red Hat Enterprise, CentOS, Debain), network hardware and architecture
    • Demonstrated ability to positively influence and persuade individuals of varying levels
    • Previous experience working in large scale environments with diverse technologies is a plus


    LogMeIn simplifies how people connect with each other and the world around them to drive meaningful interactions, deepen relationships, and create better outcomes for individuals and businesses. One of the world’s top 10 public SaaS companies, and a market leader in communication & conferencing, identity & access, and customer engagement & support solutions, LogMeIn has millions of customers spanning virtually every country across the globe. LogMeIn is headquartered in Boston with additional locations across North America, Europe, Middle East, Asia and Australia.


    Be Accountable - even when no-one is looking
    Thrive Together - greatness comes from unlocking each other’s potential
    Advance Confidently - we find opportunity and act on it
    Collaborate Openly - our whole is greater than the sum of our parts
    Engage Fearlessly - we speak up and listen


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.