Cyber Vulnerability Management Analyst

If end date is listed, the posting will come down at 12:00 am on that date:

About the position:

Supports the daily operations, health and maintenance of Ameren's Vulnerability Management Cybersecurity technology portfolio. Maintains a deep understanding of the threat landscape and ensures cybersecurity technology is effectively configured to detect vulnerabilities. Contributes to overall risk reduction by collaborating with operational teams and assisting them with prioritization in their patching efforts based on the risk posed. Contributes as a member of the technical team in executing Ameren's Vulnerability Management program through vulnerability scanning and vulnerability research/analysis.

Responsibilities:

• Supports the daily foundational health of the vulnerability management toolset.
• Reviews vulnerabilities across multiple different technology stacks, Operating Systems, Networking Hardware, and Applications.
• Assists with the analysis of vulnerabilities and provides continuous monitoring for emerging cyber security threats.
• Supports daily vulnerability scanning which includes prioritizing vulnerabilities by cross-referencing threat intelligence and establishing the risk posed.
• Collaborates with operational teams to support a risk-based approach to prioritizing vulnerabilities which includes recommending specific remediation solutions.
• Drafts and customizes reports/dashboards including trending data for operational teams within the vulnerability management technology tool stack.
• Creates vulnerability remediation plans and socializes the plan with the business segments.

• Maintains the teams' toolset and workflows required for assessing vulnerabilities and emerging threats.
• Evaluates risks and impacts of new technologies within the Digital and cybersecurity environment
• Supports the continuous development and execution of the Enterprise Vulnerability Management strategic plan to identify and reduce vulnerable attack surfaces
• Reviews, creates, updates documentation for the vulnerability management process and procedures workflow.
• Drives continuous improvement idea's for automation and enhancement in any aspect of the vulnerability management workflows.

Qualifications

• Bachelor's degree required, preferably in engineering, mathematics, computer science, business, or cybersecurity.
• 2+ years of relevant experience.
• Experience with vulnerability management assessment tools like Tenable, Rapid 7 etc.
• Linux command line proficiency.
• Understanding of REGIX or REGEXP to extract precise vulnerability data from Tenable is preferred.
• Will consider candidates without a degree if they have shown/demonstrated having 2+ additional years of equivalent, relevant experience in the tools, systems, and initiatives leveraged by Ameren.
• Professional certification (e.g. Security+, Network+, OSCP, GIAC, CDH) preferred.

In addition to the above qualifications, the successful candidate will demonstrate:

• Strong analytical skills reviewing CVE's and ability to quickly assess the threat or risk.

• Proactive with vulnerability and threat research and related news.

• Excellent written and verbal communication skills.

• Experience across varied cybersecurity disciplines.

• Knowledge of managing and securing technologies.

• Knowledge of common security tools.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ethnicity, age, disability, genetic information, military service or status, pregnancy, marital status, sexual orientation, gender identity or expression, or any other class, trait, or status protected by law.