SIGN IN
Senior Vulnerability Management Specialist jobs in United States
cer-icon
Apply on Employer Site
company-logo

New York City Office of Technology & Innovation · 1 day ago

Senior Vulnerability Management Specialist

positionBrooklyn, NY
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date4+ years exp
The New York City Office of Technology and Innovation (OTI) leverages technology to improve public safety and government efficiency. The Senior Vulnerability Management Specialist will work with various NYC agencies to ensure the security and resiliency of systems that support critical public safety services through vulnerability assessments and risk management.
Information Technology
check
H1B Sponsor Likelynote

Responsibilities

Research, analyze and brief management and team members on relevant Risk, Vulnerabilities, CVE’s, CVSS, Vector Strings, NVD, Mitre, TTP’s, attack vectors and mitigations for various technologies
Design, architect and build vulnerability management scanning infrastructure and tools
Manage, configure and conduct vulnerability management scans across various infrastructure
Conduct vulnerability threat intel analysis through industry research, deep analysis, generating of reports and dashboards in vulnerability management scanner tools to accurately assess and prioritize risk
Evaluate security vulnerabilities, assess risk and impact, develop mitigation strategies, and implement remediation
Conduct vulnerability research for the purpose of threat exposure management and attack surface reduction
Conduct cybersecurity risk assessments
Work with City agencies to communicate risk and proper remediation
Present succinct technical briefings to team members and customers for intel research, risk assessment, CVE’s, vendor hardware/software, industry trends
Create scripts utilizing Python, PowerShell and others to automate vulnerability management tasks
The ability to automate detection, reporting and tracking of vulnerabilities identified
Create deep analysis and reports around vulnerability management utilizing dashboards and reports
Develop security documentation and SOP’s
Develop scripts for automation
Lead other Vulnerability Management Analysts in various tasks
Handle special projects and initiatives as assigned

Qualification

CybersecurityVulnerability assessmentsVulnerability management toolsScripting PythonScripting PowerShellRisk assessmentSecurity best practicesData analysis (Excel)Research skillsTechnical communicationTeam leadership

Required

A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or, Education and/or experience which is equivalent to '1' above
Research, analyze and brief management and team members on relevant Risk, Vulnerabilities, CVE's, CVSS, Vector Strings, NVD, Mitre, TTP's, attack vectors and mitigations for various technologies
Design, architect and build vulnerability management scanning infrastructure and tools
Manage, configure and conduct vulnerability management scans across various infrastructure
Conduct vulnerability threat intel analysis through industry research, deep analysis, generating of reports and dashboards in vulnerability management scanner tools to accurately assess and prioritize risk
Evaluate security vulnerabilities, assess risk and impact, develop mitigation strategies, and implement remediation
Conduct vulnerability research for the purpose of threat exposure management and attack surface reduction
Conduct cybersecurity risk assessments
Work with City agencies to communicate risk and proper remediation
Present succinct technical briefings to team members and customers for intel research, risk assessment, CVE's, vendor hardware/software, industry trends
Create scripts utilizing Python, PowerShell and others to automate vulnerability management tasks
The ability to automate detection, reporting and tracking of vulnerabilities identified
Create deep analysis and reports around vulnerability management utilizing dashboards and reports
Develop security documentation and SOP's
Develop scripts for automation
Lead other Vulnerability Management Analysts in various tasks
Handle special projects and initiatives as assigned

Preferred

8+ years of experience in Cybersecurity, including vulnerability assessments, penetration testing, security assessments, strategy and program development, network architecture designs
Strong knowledge of Vulnerabilities, CVE's, CVSS, Vector Strings, NVD, Mitre, TTP's, attack vectors and mitigations
Experience with the design, architect and build of vulnerability management scanning infrastructure and tools specifically Rapid7 and Tenable conducting Rapid7 and Tenable vulnerability scans and analysis through reports and dashboards to accurately identify risk
Experience conducting intel research around CVE's, vendor hardware/software vulnerabilities, and presenting succinct technical overviews to team members and customers
Experience with cybersecurity standards and best practices and how to integrate them
Ability to analyze cybersecurity documentation, including security policies, plans, and procedures
Strong knowledge of security best practices across multiple platforms, such as Microsoft Windows, Linux, VPN, VMWare, Cisco IOS, and Mobile OS Android/Apple IOS
Extensive experience with scripting such as Python and PowerShell to automate vulnerability management tasks
Extensive experience with Excel, especially for performing data analysis
Experience with leading other team members
Excellent oral and written communication skills
Excellent research and analytical skills
Willingness to travel in the five boroughs of NYC
Ability to work both independently and as part of a team

Benefits

Great benefits
Public Service Loan Forgiveness

Company

New York City Office of Technology & Innovation

twittertwitter
company-logo
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City.
location
Brooklyn, New York, USA
people-size1001-5000 employees
web-link
http://www.nyc.gov/doitt

H1B Sponsorship

New York City Office of Technology & Innovation has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (1)
2020 (3)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Daniel Gonzalez
Telephony SME - Contractor NYC OTI
linkedin
leader-logo
Joel V
Incident Response Readiness Coordinator at NYC OTI Cyber Command
linkedin
Company data provided by crunchbase