Vulnerability Management Analyst

Posted 04 December 2023
Location Tulsa, United States of America
Job type Contract

Job Description

Vulnerability Management Analyst

Location: Remote


The Vulnerability Management (VM) Analyst reports to the Manager of Infrastructure Risk & Quality.  This role will focus on driving continued excellence with the company's vulnerability management program through the following areas of responsibility:

Process Support Expert – Function as the point of contact for vulnerability remediation teams that have questions related to the company's vulnerability management processes.  Create and maintain process documentation related to the vulnerability management program.

System Support Power User – Function as the system support power user for the company's vulnerability management ticketing system.  Assist remediation teams with questions related to ticketing assignments, troubleshooting, reporting, and general system support.  Coordinate with VM system administrators on changes that improve user experience and drive improvements for the overall vulnerability management program.

Configuration Management Database (CMDB) Maintenance - Identify data issues with the company's CMDB preventing the correct assignment of vulnerability remediation tickets and report them to the CMDB administrator.  Identify potential improvements to the CMDB that help drive towards increased ticket SLA compliance.

Unknown Asset Identification – Leverage asset systems and work with appropriate technology subject matter experts (SMEs) to properly identify assets that are not immediately recognized by our vulnerability management ticketing system.  Work with the CMDB administrator to properly catalog these assets and ensure vulnerability tickets affecting these assets are routed to the appropriate remediation teams.

Project Management - Responsible for leading small to medium sized projects related to vulnerability management including but not limited to software end-of-life (EOL) tracking and decommissioning.

The ideal candidate for the role of Vulnerability Management Analyst will have some or all the following experience:
  • Working as a customer facing systems administrator or business analyst in an enterprise environment.
  • Experience using ServiceNow and supporting the ServiceNow Vulnerability Response product.
  • Experience using and/or supporting a variety of applications and platforms responsible for providing IT asset data including but not limited to:  Microsoft SCCM, Microsoft Intune, Microsoft Active Directory, Net Brain, Foreman, RHEL Satellite, VMware vCenter.
  • Experience creating reports and dashboards using Microsoft PowerBI, Spotfire or similar applications.
  • Ability to lead small to medium sized projects, interacting with internal users and potentially external vendors.