Sr System Analyst- Vulnerability Management Lead

Job Info

Apr 3, 2024


Posting Expiration Date: Apr 30, 2024

Schedule Type: Full-Time

Minimum Salary: $95000

Maximum Salary: $125000

Organization: IT Engineering & Operations

Department: IT Infrastructure & Operations

Section: IT ENG Data Center Engineering

Location: NY-New York-4 Irving Pl Headquarters

Job Description

Mission Statement

  • Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) employees are required to follow health, safety, and environmental policies, EEO, Standards of Business Conduct, and all other applicable company policy and procedures. We all share a responsibility to advance the company’s mission by excelling at our three corporate priorities – safety of our people and the public, operational excellence in all that we do, and ensuring the best possible customer experience.

Core Responsibilities

  • Directs Managed Service Provider (MSP) teams in supporting cyber initiative follow-ups including those related to data center toolsets, runbooks and cyber vulnerability remediations.Engages with all IT teams and vendors tostreamlineidentification and resolution of cyber vulnerabilities across the organization's systems as attributed to server, storage, load balancer and database systems.
  • Drivescyber compliance reporting follow-ups toensure that audit deliverables arenot onlytimely but alsometiculouslycomplete and accurate.
  • Collaborateswith business owners, applications, and cyber support groups tofortifythe security, integrity, and availability of infrastructure systems. Overseesremediation procedure reviews, testing guidelines, and performance tuning measures.
  • Champions DR testing support ensuringproactive communications to IT and business audiences.
  • Supervisesthe MSP toconfirmtasks, incidents, and changes are properly qualified and issues areefficientlyresolved and closed in a timely manner pursuant to SLAs.
  • Partnerswith server, storage and other support teams toensureprompt response, resolution, analysis, of published vulnerabilities. Works with cyber teams and the MSP to ensure that cyber metrics are reported and tracked in a timely manner.
  • Keeps abreast ofcurrent developments in vulnerability management mitigation techniques andproposesrecommendations to reduce risk.
  • Engages inchange management reviews and/oroverseesMSP DR testing programs and support activitiesto ensureadherence to Compliance requirements.
  • Refreshespolicies and procedures, runbooks and documentation toconfirmthey are current,detailed, andaccuratelyreflect existing practices and controls.

Required Education/Experience

  • Master's Degree in Computer Science, MIS, Information Technology and 2 years of relevant work experience. or
  • Bachelor's Degree in Computer Science, MIS, Information Technology and 3 years with relevant experience. or
  • Associate's Degree in Computer Science, MIS, Information Technology and 4 years with relevant experience. or
  • High School Diploma/GED and 5 years with relevant experience.

Preferred Education/Experience

  • Master's Degree in Computer Science, MIS, Information Technology and 2 years of relevant work experience.

Relevant Work Experience

  • Recent experience working as a cyber engineer with background in server, storage, network infrastructure systems.
  • Hands on experience with various cyber tools including Tanium, Splunk, CyberArk.
  • Strong knowledge of vulnerability management processes including identification, assessment, and remediation of cyber events.
  • Managed cyber projects and remediation activity KPIs and metrics.
  • Supervisory and managerial experience with a proven ability to motivate people.
  • Demonstrated results implementing new cyber focused technologies, reducing cybersecurity risks, and improving system resiliency.
  • Excellent project management, analytical and communications skills. Strong knowledge of vulnerability management tools & processes.

Skills & Ability

  • Strong verbal communication and listening skills
  • Project Demonstrated project management skills

Licenses & Certifications

  • Driver's License Required

Physical Demands

  • Ability to push, pull, and lift up to 40 pounds
  • Sit or stand to use a keyboard, mouse, and computer for the duration of the workday
  • Ability to stoop, bend, reach, and kneel throughtout the workday
  • Ability to read small print and symbols

Other Physical Demands

  • Must be able to respond to Company emergencies by performing a System Emergency Assignment to restore service to our customers.

Technical Difficulty Statement

Equal Opportunity Employer

  • Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) are equal opportunity employers. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of the individual’s actual or perceived disability, protected veteran status, race, color, creed, religion, sex, age, national origin, gender, gender identity, gender expression, genetic information, marital status, sexual orientation, citizenship, domestic violence victim status, or any other actual or perceived status protected by law.