Cybersecurity Vulnerability and Threat Management Analyst

Job Summary:

We are seeking a highly skilled and experienced professional to lead our new Cybersecurity Vulnerability and Threat Management program. This critical role will be instrumental in strengthening our organization's security posture and protecting our digital assets from evolving cyber threats.

About the Role:

As the Cybersecurity Vulnerability and Threat Management Analyst, you will be responsible for developing, implementing, and overseeing comprehensive strategies to identify, assess, and mitigate security vulnerabilities across our IT infrastructure. You will work with various security professionals and collaborate with cross-functional teams to ensure the effectiveness of our security measures.

Key Responsibilities:

1. IT Asset Management (CMDB)

• Develop and maintain a robust Configuration Management Database (CMDB)

• Ensure accurate tracking and management of all IT assets

2. Vulnerability Management Strategy

• Design and implement a comprehensive vulnerability management program

• Establish policies, procedures, and best practices for vulnerability identification and remediation

3. Vulnerability Assessment

• Conduct regular vulnerability scans and assessments across the organization's IT infrastructure

• Analyze and prioritize vulnerabilities based on risk and potential impact

4. Remediation Planning

• Develop and oversee the execution of remediation plans for identified vulnerabilities

• Collaborate with IT and development teams to ensure timely resolution of security issues

5. Patch Management Strategy

• Create and maintain an effective patch management process

• Ensure timely application of security patches across all systems and applications

6. Threat Intelligence

• Establish a threat intelligence program to proactively identify and respond to emerging threats

• Lead threat hunting initiatives to detect and mitigate advanced persistent threats (APTs)

7. Penetration Testing

• Oversee internal and external penetration testing efforts

• Analyze results and recommend security improvements based on findings

Qualifications:

• Bachelor of Science degree, required

• 2+ years of experience in the cybersecurity field, required

• Excellent communication and leadership skills, required

• Strong analytical and problem-solving abilities, required

• Strong knowledge of vulnerability management tools, threat intelligence platforms, and penetration testing methodologies, preferred but not required

• Certifications such as CISSP, CEH, GIAC, or equivalent, preferred but not required

• Experience with regulatory compliance standards (e.g., NIST, CIS), preferred but not required

Benefits:

• Medical insurance 

• Health savings account with company contribution 

• Dental insurance 

• Vision insurance 

• Basic and voluntary life insurance 

• Disability insurance 

• 401(k) plan with company match 

• Paid vacation and holidays 

• Stock purchase program with employee discount 

• Educational reimbursement 

• Wellness programs and challenges 

• Other supplemental benefits