Senior Vunerability Management Analyst

Job Title: Senior Vulnerability Management Analyst - Product Security

Location: Jacksonville, FL; West Melbourne, FL; Pittsburgh, PA

Employment Type: Full Time

Company Description: Our client is a global leader in providing equipment, systems, digital solutions, and value-added services for freight and transit rail. With a focus on driving progress and creating transportation solutions that move and improve the world, they are committed to excellence and innovation.

Job Description:

Our client is seeking a Senior Vulnerability Management Analyst - Product Security to join their team. In this role, you will be responsible for leading day-to-day aspects of vulnerability management operations, including process improvement and program maturity projects. You will work across a global organization to execute the Vulnerability Management Lifecycle in the company's products, lead and mature vulnerability management processes, and ensure the quality and integrity of recorded vulnerabilities from various sources. Additionally, you will develop and execute program awareness campaigns and webinars with internal stakeholders and actively contribute to the implementation of technical efficiencies and automation of vulnerability management processes. You will also lead the creation of vulnerability advisories and coordinate and execute the disclosure process aligned with operational targets and program policy.

Key Responsibilities:

- Execute the Vulnerability Management Lifecycle in the company's products
- Lead and mature vulnerability management processes
- Ensure quality and integrity of recorded vulnerabilities
- Develop and execute program awareness campaigns and webinars
- Contribute to the implementation of technical efficiencies and automation of vulnerability management processes
- Lead the creation of vulnerability advisories and coordinate and execute the disclosure process
- Communicate and report on KPIs and program metrics
- Engage with internal stakeholders to support vulnerability remediation

Required Qualifications:

- Bachelor's degree from an accredited college/university in computer science/engineering
- 6-8 years of experience in Cybersecurity, with 3-5 years focus on Vulnerability Management domain
- Strong knowledge of common vulnerability frameworks (CVSS, OWASP)
- Experience using vulnerability scanning/management tools (e.g., ArmorCode, Tenable, Qualys)
- Strong knowledge of MS Excel, PowerPoint, Word
- Ability to collaborate effectively as part of a global cross-functional team
- Detail oriented with focus on quality
- Ability to execute multiple concurrent assignments and achieve commitments
- Ability to effectively communicate across a variety of audiences and skillsets
- Ability to identify and communicate meaningful metrics
- Excellent written and verbal communications
- Professional cybersecurity certifications such as CEH, Security , CySA

Preferred Qualifications:

- Master's degree from an accredited college/university in computer science/engineering
- Proven experience leading projects
- Knowledge of CISA and/or critical infrastructure regulation/initiatives
- Knowledge of Secure SDLC methodologies
- Proven experience working with productivity tools such as PowerBI
- Knowledge of system, application, and database hardening techniques and practices
- Advanced professional cybersecurity certifications such as CISSP, GEVA, CISA
- Proven experience or certification in IEC-62443

Application Instructions: To apply, please submit your resume detailing your relevant experience and qualifications.