Sr IT Security Advisor

Sr IT Security Advisor

By joining Sedgwick, you’ll be part of something truly meaningful. It’s what our 33,000 colleagues do every day for people around the world who are facing the unexpected. We invite you to grow your career with us, experience our caring culture, and enjoy work-life balance. Here, there’s no limit to what you can achieve.

Newsweek Recognizes Sedgwick as America’s Greatest Workplaces National Top Companies

Certified as a Great Place to Work®

Fortune Best Workplaces in Financial Services & Insurance

To manage the implementation of security measures to protect company data, networks, and computer systems. To focus on executing security fundamentals for threat detection, investigation, and response efforts.

We are looking for enthusiastic candidates who thrive in a collaborative environment, who are driven to deliver great work, are customer-oriented and are naturally empathetic.

• Engineers, implements and monitors security measures for the protection of computer systems, networks and information.
• Identifies and defines system security requirements.
• Designs computer security architecture and develops detailed cyber security designs.
• Prepares and documents standard operating procedures and protocols.
• Configures and troubleshoots security infrastructure devices.
• Develops technical solutions and new security tools to assist in mitigating security vulnerabilities and automating repeatable tasks.
• Leads IT groups and business units as necessary in troubleshooting compatibility issues between security tools and business or productivity programs.
• Performs analysis of suspected malicious code and other software or programs and provides written or verbal analysis to management.
• Analyzes client and customer needs as required and provides clear and concise reports to leadership.
• Experience configuring and managing scan engines, sites, and asset groups.
• Skilled in interpreting vulnerability findings, prioritizing remediation efforts using Real Risk Score and Threat Intelligence.
• Ability to create and manage custom dashboards, reports, and alerts within Insight
  
  VM.
• Familiarity with Remediation Projects and tracking progress across teams.
• Knowledge of Live Dashboards and Query Builder for real-time visibility.
• Experience integrating Insight
  
  VM with ticketing systems (e.g., Service Now, Jira) for automated remediation workflows.
• Understanding of Nexpose scan engine architecture and deployment.
• Ability to use Insight
  
  VM APIs for automation and custom integrations.
• Experience coordinating internal and external penetration testing engagements.
• Skilled in scoping penetration tests based on business needs, asset criticality, and threat landscape.
• Ability to liaise between third-party testers, internal teams, and stakeholders to ensure smooth execution.
• Familiarity with test scheduling, resource allocation, and minimizing operational impact.
• Understanding of penetration testing methodologies (e.g., OWASP, NIST SP 800-115, PTES).
• Ability to review and validate test findings, assess risk levels, and prioritize remediation.
• Experience with vulnerability management tools (e.g., Rapid7 Insight
  
  VM, Tenable, Qualys) to correlate findings.
• Knowledge of network, application, cloud, and physical security testing scopes.
• Skilled in reviewing and distributing pen test reports, ensuring clarity and actionable insights.
• Ability to track and report on remediation progress, including retesting and closure validation.
• Experience maintaining audit trails and documentation for compliance and governance.
• Familiarity with regulatory requirements (e.g., PCI-DSS, HIPAA, SOX, GDPR) related to penetration testing.
• Ability to align testing efforts with risk management frameworks and security policies.

Experience using Rapid7 Insight

VM for vulnerability scanning and management required.

Bachelor’s degree in Information Systems, computer science, or related technology field from an accredited college or university preferred. Related technical institute certification preferred.

Eight (8) years of encryption technologies/algorithms, digital forensics, network…