Are you passionate about cybersecurity and eager to make a tangible impact on protecting digital assets? ERCOT is looking for a Senior Vulnerability Management Analyst to join our innovative security team. In this pivotal role, you will spearhead our vulnerability management efforts, leveraging your expertise to identify, assess, and mitigate potential threats to our IT infrastructure. If you have a keen eye for detail, a deep understanding of threat landscapes, and a track record of effective risk management, we want you to be part of our mission to safeguard our organization and drive our security strategy forward.
JOB DUTIES
- Lead and manage the vulnerability management program, including the identification, assessment, and remediation of vulnerabilities across the organization.
- Design and implement strategic plans for the vulnerability management program to ensure it aligns with organizational goals and security policies.
- Conduct regular vulnerability scans and assessments using industry-standard tools and methodologies.
- Analyze and prioritize vulnerabilities based on risk, potential impact, and exploitability.
- Prepare and present high-level security briefings and reports to management and other stakeholders, highlighting critical vulnerabilities and risk mitigation efforts.
- Collaborate with other departments and security teams to develop and implement remediation strategies and track progress.
- Monitor and report on the effectiveness of vulnerability management efforts and provide actionable insights to senior management.
- Stay current with emerging threats, vulnerabilities, and security trends to ensure proactive risk management.
- Develop and maintain documentation related to vulnerability management processes, policies, and procedures.
- Mentor and provide guidance to junior analysts and other team members.
QUALIFICATIONS
EDUCATION
- Bachelor's degree in Cyber Security, Computer Science, MIS, or a combination of education and experience that provides the applicant with knowledge equivalent to a major in of such fields is required for all levels
WORK EXPERIENCE
- Minimum of 5-7 years of experience in cybersecurity, with a focus on vulnerability management and risk assessment.
- Proficiency with vulnerability assessment tools (e.g., Qualys, Nessus, Rapid7) and knowledge of threat intelligence platforms.
- 3 or more years of experience with network protocols, operating systems, and security architectures.
- 3 years of experience with incident response, threat modeling, and security best practices.
Salary will be based on overall experience as determined by ERCOT.
CERTIFICATIONS/LICENSES
- CISSP or equivalent is preferred
- SANS certifications such as GVCA, GPEN, GWAPT, GCIH, GXPN
- Certified Vulnerability Assessor (CVA)
- Other Security certifications
Electric Reliability Council of Texas
Texas United States
www.ercot.com
