This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Public Company Accounting Oversight Boardposted 18 days ago
$114,200 - $208,000/Yr
Full-time - Senior
Hybrid - Philadelphia, PA
Professional, Scientific, and Technical Services
About the position
The PCAOB has a full-time, regular position for a Senior Cybersecurity Analyst - Threat and Vulnerability Management in the Office of Technology (OT). The Senior Cybersecurity Analyst - Threat and Vulnerability management will lead our Threat and Vulnerability Management program. The ideal candidate will play a pivotal role in identifying, assessing, and mitigating threats and vulnerabilities to ensure the security and resilience of the PCAOB IT infrastructure.
Responsibilities
- Act as a technical leader on threat and vulnerability management.
- Perform risk-based vulnerability assessments across systems, applications, and networks (on-prem and in the cloud).
- Review and analyze vulnerability data to identify trends and patterns.
- Advise and assist treatment/remediation teams in prioritizing vulnerability fixes and developing treatment plans.
- Develop, implement, and maintain a vulnerability lifecycle management program.
- Collaborate with OT and other colleagues to prioritize and remediate vulnerabilities.
- Design and implement automated solutions for vulnerability scanning and reporting.
- Provide technical guidance on secure system design and configurations.
- Collaborate with the rest of the security team to enhance overall security posture.
- Monitor and analyze threat intelligence feeds to identify potential risks.
- Conduct threat modeling and recommend mitigations for critical business applications.
- Proactively hunt for cyber threats and vulnerabilities within the organization's environment.
- Analyze security data and logs from multiple sources (MXDR, SIEM, EDR tools, etc.) to detect anomalous activity.
- Build and improve detection mechanisms to identify malicious behavior.
- Perform incident response tasks related to emerging threats and vulnerabilities.
- Lead vulnerability and threat management initiatives across the PCAOB.
- Install, configure, and maintain PCAOB security technologies.
- Act as a liaison between security, OT, and the business to align security practices.
- Participate in on-call rotation.
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, or similar field.
- Minimum of 7+ years of Cybersecurity experience with a focus on threat and vulnerability management.
- Proficient with vulnerability scanning tools such as Rapid7 and Defender for Cloud.
- Proficient with risk-based vulnerability assessment.
- Experience in applying environmental facets to vulnerability scoring for prioritization.
- Strong Knowledge of Threat Intelligence platforms and frameworks such as Recorded Future and MITRE ATT&CK.
- Proficiency with security tools like SIEM (e.g. Sentinel, Chronicle), EDR platforms (e.g. Microsoft Defender for endpoints).
- Experience with scripting and automation (e.g. Python, Powershell).
- Familiarity with malware analysis, reverse engineering, and forensics.
- Strong analytical and problem-solving skills, with ability to collaborate effectively with diverse teams.
- A self-starter able to administer a number of open, ongoing assignments at any one time, where some assignments are routinely unstructured, requiring autonomy and independent judgment.
- In-depth experience successfully harmonizing diverse and competing interests.
- Ability to clearly articulate a position with sound logic, supporting empirical evidence, and impartiality.
- Ability to effectively represent the organization to a variety of both internal and external constituencies.
- Superior verbal and written communication skills.
- Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
Nice-to-haves
- GCIH, GCTI, GCFA, GCIA, or other relevant certification.
- Experience with Cloud environments and security solutions (Azure, AWS).
- Deep understanding of secure software development practices (DevSecOps).
Benefits
- Highly competitive compensation and benefits package.
- Hybrid work option with flexibility to work from anywhere in the U.S.
- Generous paid time off - Up to 6 weeks annually, in addition to 12 federal holidays, 2 floating holidays, and a year-end break.
- Highly competitive 401(k) match and savings options with immediate vesting.
- Comprehensive health benefit offerings including medical, dental, and vision plans.
- Supportive paid family leave benefits - Up to 16 weeks paid parental leave and up to 16 weeks paid caregiver leave.
- Life insurance benefits including basic life and AD&D insurance.
- Education benefits including Public Service Loan Forgiveness (PSLF) program and student loan repayment assistance.
- Well-being and family resources including mental health resources and paid volunteer time.
- Commuter benefits with tax-free employer subsidy.
Hard Skills
FL Studio
2
Azure Security
1
Computer Science
1
Python
1
Rapid7
1
0Qa61PT Almpf1q p58ryb0
0
1taNSFhG 6fbFwJOMBKv
0
21lPQSHt gAcs6jO1C
0
2E0Cqu johdG
0
2mlWRwa KsEpveg7 HKgRbJeLt2p xvUwX9HVqs ZyV8mj
0
3BIpbzo1 ls6gPywTOen
0
3pjm46MG0T7RiO 6HknScxh7ML
0
4ncm3 46WxU8GIC
0
6gXMKPen e1ApXDtv2
0
940OsVcr26 2FPrNRVZLH8Y Hk1Xo7KGS
0
JEYOML DBGjv8z mHetAVqZ
0
KUZCtabcD Mirsg9VEl
0
NDw UrSpA
0
P4ZzwsWL0vVTgF AD2tFm5xPve
0
P9a 0vRs2Y8EjgciHFV
0
QUPNY JEswx
0
UNkDXVjic3sJAQ n6u1pCk9tjLc
0
VOu7L4xQrIGU TKG4mygwokA
0
VpZnr827zNdHCS 6erMJvjmP
0
W6mlUEKHk ctnFGmQPSJy 4WN3BIpmw
0
WcZaXhB MeoJhCjRyOX
0
YGrZEkxOg ga5BzFoKSOh
0
Z6yGFzovE0k dI1 Af8NqHroL mQ28VJRcN7
0
ZTELol3qWF4mz9 vKgrFuibf9eY
0
bJOoC8iLHrxU x2bnOm
0
fiusym9 kWKvGDXSO
0
gu9ABX0 DNPsl7hSz
0
r3svY0x2k GVF O9chTZvNK
0
rJcdykjW yblBAIv
0
tnISMG7X lrIby1VOte 7qfj MVXUmfzc
0
uR0fs 23MvpZgenb
0
uwt3ebGlYprQJ0 heniTOyZpkg
0
wEug3rBWv uJc8
0
wkXDeHQz HzVetUTXr
0
yfsoPEamKq 8TquoBY3h
0
z2g987TM IMwlmO7tjb9a
0
Soft Skills
8KoWAs6z iVujhPYw
0
A Smarter and Faster Way to Build Your Resume