Vulnerability Management Analyst

$69,800 - $163,800/Yr

Central Hudson Gas & Electric - Poughkeepsie, NY

posted 5 days ago

Full-time - Entry Level
Poughkeepsie, NY
Utilities

About the position

The Vulnerability Management Analyst (VMA) plays a crucial role within the Cybersecurity team, focusing on assessing the organization's environment to ensure that all systems, applications, and devices are regularly scanned for vulnerabilities. The VMA utilizes cybersecurity tools and resources to stay updated on the threat landscape, escalating any vulnerabilities or threats to the appropriate business or technical owners for remediation. This position involves overseeing the entire lifecycle of vulnerabilities from reporting to remediation, adapting responsibilities as departmental needs evolve.

Responsibilities

  • Operates and supports all vulnerability management solutions/tooling
  • Increases business awareness and vigilance regarding the threat landscape and potential impacts
  • Forms partnerships with the business and technical teams to improve the remediation effort and experience
  • Provides guidance to business stakeholders on vulnerability management processes and procedures
  • Analyzes vulnerability and threat data to define patterns and trends
  • Conducts risk-based analysis of vulnerability data to effectively prioritize remediation efforts
  • Develops and maintains documentation that defines our vulnerability management program and policies
  • Develops and maintains vulnerability reporting metrics for IT leadership and executive team
  • Collaborates with the Cybersecurity Operations team to prioritize current threats and active exploits
  • Tracks and manages vulnerabilities applying to all IT & OT systems and applications
  • Performs vulnerability scans, creates remediation action plans and tracks those plans to completion
  • Supports with cybersecurity incident response including the investigation, documentation, and remediation in the event of an actual cybersecurity incident
  • Performs other duties as assigned to support the organization's cybersecurity mission
  • Provides storm/emergency restoration efforts

Requirements

  • Bachelor's degree in Computer Science, Management Information Systems, Information Technology, Cybersecurity, or a STEM related field; or an associate's degree in the aforementioned fields with at least 3 years of related experience in cybersecurity; or a high school diploma or equivalency degree with 5 years of related experience in cybersecurity
  • Excellent verbal and written communication skills, including the ability to write clear and concise technical documentation and policy
  • Strong interpersonal skills and the ability to work with internal customers in an interactive team environment
  • Strong organizational, analytic, troubleshooting, problem solving, and decision-making skills
  • Ability to multitask, pay close attention to detail, and adapt to a variety of support environments and assignments as priorities may change with little notice
  • Valid driver's license

Nice-to-haves

  • Experience with Cybersecurity tooling such as Rapid7, Tenable, Microsoft Defender, etc.
  • In-depth knowledge of National Institute of Standards and Technology (NIST) Cybersecurity Framework and 20 Critical Security Controls, NERC Critical Infrastructure Protection (NERC CIP)
  • Experience in the energy and utility industry, services industry, or a regulated or co-sourced environment
  • Strong knowledge of computer systems, information security software and hardware components, network systems, databases, and information security safeguards

Benefits

  • Competitive compensation
  • Medical, Dental, and Vision insurance
  • 401(k) Retirement Savings Plan with substantial company match
  • Life and Travel Insurance
  • Tuition Assistance
  • Wellness Reimbursement Program
  • Paid Holidays and Vacation

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service