Vulnerability Assessment Specialist III-V
BankOnIT, LLC - Oklahoma City, OK
Apply NowJob Description
Summary/ObjectiveThe Vulnerability Specialist III is a staff position that involves include analyzing and reviewing threat and vulnerability assessments, identifying any deviations from acceptable configurations or policies, assessing the level of risk, and implementing or recommending appropriate mitigation countermeasures in both operational and non-operational situations. Your expertise in identifying potential risks and implementing effective solutions will be crucial in ensuring the security of our organization's infrastructure and systems.Essential FunctionsReasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.• Utilize expertise to identify systemic security issues through analysis of vulnerability and configuration data.• Apply knowledge of computer networking concepts and protocols, as well as network security methodologies, to ensure the security of organizational systems.• Understand and apply cybersecurity and privacy principles to organizational requirements, including relevant considerations such as confidentiality, integrity, availability, authentication, and non-repudiation.• Review vulnerability scan data to identify potential risks and vulnerabilities in security systems.• Develop insights about the context of an organization’s threat environment, utilizing knowledge of cyber threats and vulnerabilities.• Apply system administration, network, and operating system hardening techniques to strengthen security measures.• Apply knowledge of network protocols, including TCP/IP, Dynamic Host Configuration, DNS, and directory services, to ensure the integrity and availability of organizational systems.• Understand how traffic flows across the network, including TCP/IP, OSI, ITIL, and other relevant models.• Support authorized penetration testing on enterprise network assets to identify potential security issues.Vulnerability Assessment Specialist III (03/2023)• Make recommendations regarding the selection of cost-effective security controls to mitigate risk, including the protection of information, systems, and processes.• Perform related work as required.Competencies• Technical Capacity.• Problem Solving/Analysis.• Critical Thinking.• Initiative.• Communication Proficiency.• Good Decision Making.• Time Management.• Research Capabilities.• Fortitude.• Perseverance.Supervisory ResponsibilityThis position has no supervisory responsibility.Work EnvironmentThis job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, scanners, and copy machines.Physical DemandsThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.While performing the duties of this job, the employee is regularly required to talk or hear. The employee is frequently required to sit for long periods of time; stand; walk; use hands to type, handle or feel; and reach with hands and arms. The employee is occasionally required to stoop, kneel, crouch, or crawl. The employee must occasionally lift and move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception, and ability to adjust focus.Position Type and Expected Hours of WorkThis is a full-time position. Hours of work and days are typically Monday through Friday in one of the following timeslots: 7:00 a.m. to 4:00 p.m., 8:00 a.m. to 5:00 p.m., or 9:00 a.m. to 6:00 p.m. Occasional evening and weekend work may be required as job duties demand.TravelTravel is not expected for this position.Required Education and Experience• General understanding of computer networking concepts and protocols, and network security methodologies.• Familiarity of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).• Knowledge of system administration, network, and operating system hardening techniques.• At least two years of technical work experience or equivalent education.• At least two relevant technical certifications (e.g., Network+, Security+, CYSA+, and SSCP) or equivalent experience.Preferred Education and Experience• Three or more years of related technology work experience.• Three or more relevant technical certifications (e.g., Network+, Security+, CYSA+ and SSCP).Other DutiesPlease note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
Created: 2024-10-14