Previous Job
Senior Cybersecurity Analyst
Ref No.: 17-04437
Location: Ewing Township, New Jersey
Position Type:Contract
Experience Level: 5 Years
Start Date: 10/16/2017
Description: •Responsible for developing the effectiveness and leading the activities of the NJCCIC Vulnerability Management Team •Responsible for researching, implementing, and configuring vulnerability assessment tools •Supervise and conduct infrastructure and application vulnerability assessments and penetration testing using manual testing techniques, scripts, commercial and open source tools •Analyze results and engage with information technology and security teams in order to resolve identified security vulnerabilities and deficiencies. •Identify and resolve any false positive findings in assessment results. •Produce metrics and reporting on the state of Executive Branch and individual agency security infrastructures, applications, and operations. •Oversee Remediation Activities including: - Manage tracking and remediation of vulnerabilities by leveraging agreed upon action plans and timelines with vendors and support teams. - Schedule and facilitate meetings with vendors and support teams to review remediation status. - Validate remediation by reviewing vulnerability results and providing status updates - Recommend appropriate policy, standards, process and procedural updates as part of comprehensive remediation solutions. - Help key stakeholders with vulnerability remediation (researching how to fix, what patch to apply, what configuration change(s) to make, etc.) •Actively participate in information security compliance reviews, audits and the remediation and mitigation of identified risks •Drive continuous improvement of the cyber security program through identification of risk, recommendations for improvements, automation of alerts and remediation, and communication with key information security and information technology partners. •Work with cross-functional teams to deliver an enterprise security posture that evolves with business, technological, and threat landscape changes •Develop and implement hunt techniques for the identification of threat actors across Executive Branch environments •Provide subject matter expertise, leadership and coordination for the Vulnerability Management Team •Assist with incident response activities as appropriate including triage, root cause analysis, kill chain analysis, escalations, notifications, communication, etc., and in accordance with the State’s Information Security Incident Response Plan •Mentor and train other employees to improve their skills and effectiveness •Assist with the development and management of the cybersecurity budget •Other information security duties as assigned