Job Description: Responsibilities:
- bility to identify systemic security issues based on the analysis of vulnerability and configuration data.
- Determine Common Vulnerability Exposure, CVE, prioritize per SLA, and drive to completion.
- bility to share meaningful insights about the context of an organization's threat environment that improves its security posture.
- Monitor and provide system owner updates for application and software-related updates.
- Maintain operational schedules and reports to engineering, application leads, and management.
- Reporting the state of TVM regularly via reporting tools within the platforms and utilizing BI tools.
- Knowledge of computer networking concepts, protocols, and network security methodologies.
- Knowledge of operating systems and patch methodologies within Windows, Linux, and Oracle platforms.
- Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
- Knowledge of cybersecurity and privacy principles.
- Knowledge of cyber threats and vulnerabilities.
- Knowledge of systems diagnostic tools and fault identification techniques.
- Knowledge of system administration, network, and operating system hardening techniques.
- Works closely with project team members to organize project tasks to be carried out as part of analysis and development and ensures they are completed within project timelines.
- Reviews project plans daily, prepares and submits status reports, monitors project deliverables, and communicates to management any issues that may impact the team's delivery.
- Collaborates with project teams and various internal stakeholder groups on an ongoing basis to ensure projects are delivered on time, within budget, adhere to high-quality standards, and meet customer expectations.
- Works with the project team to identify and assess project risks and issues.
- Takes a disciplined approach to managing project issues and risks.
- Solicits feedback and guidance of Optum's standard methodologies, tools, and best practices from team leads, project managers, leadership, and project team members.
- ccountable for seeking learning opportunities to continuously develop professional/technical knowledge that will be useful in current position and/or career aspirations.
- Responsible for relationship management with key business partner contacts and project team.
- Responsible for engaging teams to formulate relationships to achieve successful completion of risk mitigation.
- Coordinate teams of application teams, service level owners, and technical owners to status current state, forecasted efforts, and problem areas requiring escalation.
- Works closely with regional security teams and technical staff to ensure completion of assigned tasks and tracking completion of those items.
- Project management for small, short-term efforts as prescribed by security and infrastructure TVM management.
Threat Vulnerability Management and reporting:
- Responsible for working with individual teams and SLOs in managing threat mitigation for operating systems, third-party software, and application-specific vulnerabilities.
- Using tools from a wide variety of security systems and platforms candidate will diagnose risk information for actionable tasks by TVM analysts, server engineers, and endpoint engineering teams.
- Routine reporting to specific targeted audiences, technical, Service level, and managerial, along with coordinating status meetings with SLOs and application leads.
- Trend analysis for diagnostic use and historical reporting.
Must Have Skills:
- Bachelor's degree or equivalent work experience.
- 4-6 years of patching coordination/threat evaluation management experience, preferably in an IT setting.
- 5 years experience in Computer security, system hardening, patching systems.
- Experience and working knowledge of systems administration, OS hardening techniques, network, risk management.
- Experience with the Tanium security platform for analysis, trending, and deployments.