Job Information
Raytheon Technologies Vulnerability Assessment Analyst in United States
Raytheon Technologies Cybersecurity Intelligence and Assessment group has an opening for a Vulnerability Assessment Analyst (Sr. Cyber Threat Analyst I) to augment the Vulnerability Management team with scanning, remediation reporting, coordination and tracking.
The Vulnerability Analyst analyzes and prioritizes results data from vulnerability detection systems at scale, facilitate the remediation of affected systems through support to campaign tracking and communication, and assist with the execution of vulnerability scans and the administration of vulnerability scanning software.
This position can be a salary grade level G08 (Sr. Cyber Threat Analyst I) or G09 (Sr. Cyber Threat Analyst II) based on the candidate's qualifications as they relate to the skills, experience, and responsibility requirements for the position.
Job responsibilities:
Configure and operate discovery tools and services to enumerate and map enterprise networks
Configure and operate enterprise vulnerability assessment and configuration assessment tools (i.e. scanners) and integrate their output into downstream systems
Validate vulnerability findings for false positives and negatives, and document findings for future use
Develop repeatable and automated means for identifying the responsible owner for each system affected by a vulnerability and points of contact for remediation
Work with remediation owners to test effectiveness and ease of solution deployments
Review exception requests received from product owners to enumerate risks associated with certain vulnerabilities
Drive remediation of security risks including tracking of issues and action plans, and partner with patch coordination teams, technology/application owners, and business units to prioritize and enhance remediation efforts
Group and prioritize remediation findings in a manner that increases efficiency
Identify operational roadblocks to ensure timely remediation and countermeasures
Support the development and acquisition of data to inform vulnerability management metrics
Comprehensively document all aspects, technical and otherwise, of project implementations
Required Skills:
Minimum 4+ years’ experience in IT Security or IT Administration role and a bachelor’s degree or equivalent combination of related work experience and schooling
Familiarity with vulnerability scanning systems, ideally Rapid7 InsightVM/ Nexpose
In-depth knowledge of TCP/IP and networking technologies
Expert Microsoft Excel Skills
Basic familiarity with Windows/Active Directory administration and Linux
Basic proficiency with scripting/programming, ideally in Python or PowerShell
Familiarity with virtualization technologies
Some experience with Tanium and/or Splunk is a plus
Desired Skills:
Networking Certification (CCNA, etc)
Security Certification (CISSP, Security+, etc)
Education Requirements:
- Bachelor’s Degree in Computer Science, Engineering, Information Security or Management of Information Systems, or related discipline or equivalent combination of related work experience and schooling
This position requires either a U.S. Person or a Non-U.S. Person who is eligible to obtain any required Export Authorization.175687
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.