Job Title: Security Vulnerability Team Lead
Duration: 12+ Months
Start Date: ASAP
Location: Harrisburg, PA 17120 717
Position Type: Contract
Interview Type: Virtual Only
Requirement ID: SPA_CYBE722_VV
Position # : PennDOT - TAS2 A4 SC2 (Security Vulnerability Team Lead) (760722)
Required Skills:
5 Years of Extensive experience with Tenable Security Center a must. Certifications are a plus
5 Years of Familiarity with DAST tools such as Rapid 7 AppSpider.
5 Years of Technically proficient and experienced with Windows and Linux operating systems and system hardening
5 Years of Knowledge of regulatory compliance standards relevant to cybersecurity
5 Years of Experience with risk assessment methodologies and frameworks (e.g., NIST, FAIR)
5 Years of Strong understanding of network protocols and technologies (e.g., OSI Model, TCP/IP, firewalls, intrusion detection systems)
Excellent soft skills such as listening, presenting, and negotiating. (Required)
Must pass required Pennsylvania State Police background check and cannot have any felony offenses.(Required)
Ability to work remotely/and locally when required .(Required)
Professional oral and written communication skills.(Required)
Department : PennDOT
Overview
A minimum of 5 years of experience is required for the position as well as each of the technical skillsets.
This candidate serves as the Security Vulnerability Team Lead within the Information Security Office of Pennsylvania’s Infrastructure and Economic Development IT Delivery Center (IED DC) which includes the Department of Transportation (PennDOT), PA Emergency Management Agency (PEMA) and the Department of Community and Economic Development (DCED).
Job Responsibilities
· Primary role is as the subject matter expert (SME) for the management and administration of the delivery center’s vulnerability management program.
· Conduct regular vulnerability assessments and tests to identify security weaknesses in systems and applications.
· Collaborate with compliance teams to ensure adherence to regulatory requirements and industry standards related to security vulnerabilities.
· Coordinate with IT and development teams to prioritize vulnerabilities and ensure timely remediation actions are taken.
· Stay informed about the latest security trends, threats, and best practices to continuously improve the vulnerability management process.
· Prepare and present vulnerability management reports to senior management, highlighting key findings and recommendations.
· Provide training and awareness programs for staff on security vulnerabilities and best practices for risk mitigation.
· Facilitate incident response activities related to vulnerabilities and coordinate with external partners as necessary.
· Demonstrates good judgement and problem-solving skills. Reacts and adapts to changing circumstances rapidly.
· Leverages Commonwealth incident tracking and ticketing systems to receive tasks from other units, delegate tasks to other units, prioritize daily tasks, document actions taken, and the final resolution for tasks completed.
· Provides on call and/or emergency support, including after-hours as needed.
· Adheres to established service management processes and procedures.
· Performs all other related duties as assigned.
...office, from 8 am 6 pm EST, Monday to Friday. Also, our client is asking for your availability every other Saturday via remote (work from home) from 9 am 1 pm EST. This is a three-month contract-to-hire opportunity starting June 2, 2025!! The initial contract is three...
...Perma Pure Group is seeking for our Maxtec facility in West Valley City, UT a CNC Machine Shop Supervisor to lead shop operators and assistant/s to produce product needed for assembly, engineering and other business purposes. The ideal candidate will ensure a customer...
...Client requirements, this role is open to Green Card Holders and USA Citizens only. Hello We are looking for IBM WebSphere MQ Engineers... ....****@*****.*** No C2C or H1B or 1099 or TN Visa or F1 (CPT or OPT) at this time. Role: Supporting...
Meta Ads Execution & AnalysisAnalysis of in-house mall sales/traffic dataLocalization of our contents/utilizationInfluencer collaboration and branded content planningContents Commerce Platform Operation
...professional capabilities while working on challenging, exciting projects in a collaborative, congenial environment. We are seeking a SOC Analyst Level 1to actively participate in security operations by proactively monitoring systems, investigating alerts, and providing...