Vulnerability Analyst I

About The Position

Requirements

• Experience with Tenable, OpenVAS, Qualys or similar vulnerability management technology
• Understanding of vulnerability scoring/frameworks (CVSS, NVD)
• Ability to assess severity and prioritize vulnerabilities
• Experience with Windows or Linux environments
• Proficiently uses and troubleshoots a wide range of IT hardware, software, and network systems to ensure optimal performance and user experience.
• Utilizes systems and tools to support categorizing and classifying data and information.
• Acquires, organizes, protects and processes data in order to fulfill business objectives.
• Shifts into and out of a mental mindset associated with assessing the facts and circumstances of the current situation and/or environment, and makes the appropriate/innovative adjustments to thinking and work habits to thrive in any scenario.
• Understands, evaluates, uses, and engages with digital technology and information, as well as creates and shares digital content, while being aware of essentials like safety, privacy and ethical considerations.
• Controls access to, servers, systems, and computers.

Nice To Haves

• Scripting experience with Python or Bash
• Cloud vulnerability management experience or knowledge

Responsibilities

• Continuously monitor firewalls, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) platform for potential security threats.
• Review and analyze system logs and alerts, escalating suspicious activities to senior analysts when necessary.
• Assist in the identification, analysis, and response to security incidents, including data breaches, malware infections, and unauthorized access attempts.
• Assist with incident documentation, containment procedures, and remediation efforts under the direction of senior analysts.
• Analyze malicious emails reported by team members and report patterns to next tier information security analysts.
• Assist in conducting security testing, verification and risk analysis of the Company network and systems.
• Provide fault isolation and resolution to limit and address issues promptly.
• Create and maintain technical and/or user documentation to a high standard.
• Collate and analyze data using preset tools, methods, and formats.
• Work within established procedures to achieve specified goals.
• Implements transaction security and computer/network virus protection.
• Maintains system/service and information security, integrity, compliance and continuity.
• Ensures the confidentiality, integrity, and availability of information.
• Determines and analyzes trends from data that is collected to assist in compiling reports that will help in decision-making.
• Creates clear, comprehensive, effective, and user-friendly guides, manuals, narratives, and reports that convey complex technical concepts, using documentation tools to craft structured and visually appealing content that meets the intended purposes.

Benefits

• Competitive Wages & Paid Time Off
• Stock Purchase Plan & 401k with Employer Contributions Starting Day One
• Medical, Dental, & Vision Insurance with Optional Flexible Spending Account (FSA)
• Team Member Health/Wellbeing Programs
• Tuition Educational Assistance Programs
• Opportunities for Career Growth