Enterprise Vulnerability Management Analyst

About The Position

Requirements

• Completion of a bachelor’s degree from an accredited course of study, in Information Assurance, Cybersecurity, IT Security, Computer Science, Information Technology or corresponding years of professional experience in an IT or Cybersecurity role
• Experience as an IT Administrator supporting different domains of IT infrastructure (Network, Systems, etc.)
• Experience working collaboratively across departments and coordinating project tasks and tracking to completion
• Ability to work under minimum supervision while taking initiative on new tasks and driving them to completion
• Curiosity to learn new systems and work with collaborators to understand their business processes to develop compatible solutions

Nice To Haves

• Pursuit or completion of Security related certification (CISSP, PNPT, Sec+, etc.)
• Experience with vulnerability management in an enterprise environment
• Computer, infrastructure (full tech stack) and operating system knowledge
• Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes
• Self-motivated with the ability to work in a fast-paced environment
• Familiarity with various network and host-based security applications and tools, such as assessment/scanning tools, intrusion detection systems, and other security software packages
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins)
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
• In depth knowledge of one or more IT domains (Networking, Systems, Cloud, DevOps)

Responsibilities

• Use tooling to identify, classify, and report on vulnerabilities in all KLA environments
• Assist in execution of efforts to protect the organization’s information assets
• Work with internal and external tools and services to identify and classify vulnerabilities and risk to the company
• Work with IT and business partners to mitigate risks and develop remediation plans
• Conduct system, network, or software vulnerability audits, assessments, and penetration testing in accordance with established processes and procedures
• Conduct information system risk assessments and support compliance documentation and system accreditation requirements
• Maintain an active curiosity about Cybersecurity trends and advisories to stay current on up-to-date vulnerabilities and exploits

Benefits

• medical
• dental
• vision
• life
• 401(K) including company matching
• employee stock purchase program (ESPP)
• student debt assistance
• tuition reimbursement program
• development and career growth opportunities and programs
• financial planning benefits
• wellness benefits including an employee assistance program (EAP)
• paid time off
• paid company holidays
• family care and bonding leave