General Electric Sr Vulnerability Management Analyst in Glen Allen, Virginia

Role Summary:

The Sr Vulnerability Management Analyst will lead the scanning and identification of security vulnerabilities in GE networks, servers, endpoints, applications, and/or databases. Primary responsibilities will include configuration, maintenance, integration and reporting for vulnerability scanning operations and remediation activities

Essential Responsibilities:

  • Provide support and resolution for scanning and vulnerability remediation reporting issues

  • Identify and resolve gaps related to Governance Risk Compliance integration and reporting

  • Provide consultancy to customers and develop technical documentation, including functional specifications, system design specifications and standard operating procedures (SOPs) as necessary

  • Provide technical support for vulnerability management projects

  • Develop and mature operations in support of overall tool strategy

  • Work with various risk teams to identify the top vulnerability risks to the company

  • Produce remediation plans for vulnerabilities

  • Coordinate cross functional teams to execute against remediation plans

  • Provide reports, pitches, and status updates on all operational activities

  • Works with GE businesses to define key risk indicators and key performance indicators

  • Identify and manage asset scope for scanning operations


Basic Qualifications:

  • Bachelor’s degree in Computer Science, Information Technology, Information Systems or related field (or 4 years equivalent working experience)

  • Minimum 4 years of experience in Information Technology and Risk & Compliance but typically 5+ years. Eligibility Requirements:

  • Legal authorization to work in the US is required. GE may agree to sponsor an individual for an employment visa now or in the future if there is a shortage of individuals with particular skills. Desired Characteristics:

  • Significant enterprise vulnerability management experienceto include patch management and remediation activities in a large company

  • Server administration experience to support and provide guidancefor technical remediation

  • Hands-on experience with scanning tools

  • Familiarity with ServiceNow CMDB and GRC tools

  • Security related certifications (i.e. CISSP, CEH, CISM,CISA, CSSLP, CCNP)

  • Experience with scripting languages (Python, Ruby, Perl) andBI tools (Tableau, SiSense)

  • Good analytical skills, attention to detail and ability tomethodically troubleshoot complex issues

  • Experience in security operations, incident response,offensive security or vulnerability

  • management at a large enterprise

  • Experience with vulnerability scanning tools, specificallyQualysGuard

  • Broad understanding of systems administration principals

  • Cloud and DevOps experience a plus

  • Excellent project management skills to include leadingmultiple projects simultaneously

  • Outstanding written and oral communicationskills to include previous experience delivering presentations to seniorleadership#DTR About Us: GE (NYSE:GE) drives the world forward by tackling its biggest challenges. By combining world-class engineering with software and analytics, GE helps the world work more efficiently, reliably, and safely. GE people are global, diverse and dedicated, operating with the highest integrity and passion to fulfill GE’s mission and deliver for our customers. GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer at . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Locations: United States; Virginia; Glen AllenGE will only employ those who are legally authorized to work in the United States for this opening.