Analyst - Vulnerability & Cyber Asset Management

United Airlines - Chicago, IL

posted 5 days ago

Full-time - Mid Level
Chicago, IL
Air Transportation

About the position

The Vulnerability and Asset Management Analyst at United Airlines plays a critical role in safeguarding the airline's systems, networks, and data by identifying, analyzing, remediating, and reporting on vulnerabilities. This position is part of the Cybersecurity and Digital Risk (CDR) team, which is dedicated to embedding cybersecurity into the company's operations and reducing business risk through strong cybersecurity processes.

Responsibilities

  • Support the entire vulnerability and asset lifecycles, from discovery to assessment, reporting, remediation, and validation.
  • Drive analysis across different datasets including vulnerability and asset management data from various source tools.
  • Generate vulnerability and asset management metric and remediation-related dashboards and reports.
  • Coordinate with infrastructure and application teams to enable remediation of vulnerabilities and findings within proper timeframes and track remediation.
  • Understand and advise on enterprise policies and technical standards regarding vulnerability and asset management and secure configuration.
  • Deliver training and guidance to stakeholders on vulnerability management processes and standards.
  • Assist in integrating source tools and validating data for the centralized vulnerability management tool.
  • Publish documentation surrounding data analysis trends, processes, and techniques.

Requirements

  • Bachelor's degree or equivalent experience.
  • At least three years of hands-on experience within vulnerability management, security operations, or equivalent experience.
  • Basic data analysis skills.
  • Basic experience writing technical reports and developing presentations for a broad spectrum of technical and non-technical audiences.
  • Previous experience with vulnerability management solutions (e.g., ServiceNow Vulnerability Response).
  • Basic knowledge of various scanning technologies, on-premise infrastructure, SAST, DAST, cloud infrastructure.
  • Basic understanding of security fundamentals and common vulnerabilities.
  • Familiarity with common security frameworks (SOX, NIST, FISMA, etc.).
  • Exposure to the full stack of information technologies and associated security models - including server/OS, database, hardware, network devices, user compute, application/SDLC, etc.
  • Demonstrate strong analytical and problem-solving skills, detail-oriented & organized approach, superb communication, developed interpersonal skills.
  • Must be legally authorized to work in the United States for any employer without sponsorship.

Nice-to-haves

  • Security+, Network+, or vendor-specific certifications in Vulnerability & Asset Management.
  • Previous experience working with cyber security and vulnerability and asset management.
  • Previous experience with credentialed, host-based and application layer scan technologies.
  • Previous experience with data analytics technologies (e.g., Quicksight, other business analytics tools).
  • Understanding and experience with network architectures, technical resolutions, and operations.
  • Self-starter.

Benefits

  • Parental leave
  • 401k
  • Space available travel privileges

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service