Company Profile
Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member's contributions and offers a supportive environment for career development. Come, stay, and grow with us.
Job Description
- Workstation Vulnerability Management
- Perform daily vulnerability monitoring and analysis across endpoints (Windows/Linux)
- Validate findings from scanners (Qualys/Tenable/Defender VM) and eliminate false positives
- Track patching and remediation status with IT/Infra teams
- Ensure SLA-driven closure of vulnerabilities based on severity
- Security Scorecard Monitoring
- Identify and monitor externally exposed assets (domains, IPs, shadow IT)
- Analyze risks such as:
- Open ports / misconfigurations
- Exposed services / outdated systems
- Track remediation with respective owners
- Security Scorecard Monitoring
- Monitor and track security posture metrics (scorecard trends, risk ratings)
- Identify key drivers for score changes (patch gaps, exposed assets, vulnerabilities)
- Provide regular reports and insights for improvement actions
Reporting & Tracking
- Prepare daily/weekly vulnerability status reports and dashboards
- Maintain accurate tracking of vulnerabilities, remediation progress, and backlog
Coordination
- Work with:
- IT / Endpoint / Infra teams for patching and closure
- Security teams for risk prioritization and validation
Continuous Improvement
- Identify recurring issues and remediation gaps
- Support initiatives to improve:
- Patch compliance
- Vulnerability closure timelines
- Asset visibility
Qualifications
- Basic knowledge of vulnerability management lifecycle
- Understanding of:
- CVSS scoring, patching concepts
- Endpoint security & OS fundamentals
- Familiarity with scanning tools and dashboards
- Good analytical and coordination skills
