Senior Vulnerability Management Analyst - Product Cybersecurity

Company: Wabtec
Location: Trenton
Posted on: March 17, 2023

Job Description:

Wabtec Corporation is a leading global provider of equipment, systems, digital solutions and value-added services for freight and transit rail. Drawing on nearly four centuries of collective experience across Wabtec, GE Transportation and Faiveley Transport, the company has unmatched digital expertise, technological innovation, and world-class manufacturing and services, enabling the digital-rail-and-transit ecosystems. Wabtec is focused on performance that drives progress, creating transportation solutions that move and improve the world. Wabtec has approximately 27,000 employees in facilities throughout the world. Visit the company's new website at: http://www.WabtecCorp.com .It's not just about your career--- or your job title---it's about who you are and the impact you are going to make on the world. Do you want to go into uncharted waters---do things that haven't been done to make yours and someone else's life better? Wabtec has been doing that for decades and we will continue to do so! Through our people, leadership development, services, technology and scale, Wabtec delivers better outcomes for global customers by speaking the language of industry.**Senior Vulnerability Management Analyst - Product Security** is responsible for the managing day-to-day vulnerability management operations.**ESSENTIAL DUTIES AND RESPONSIBILITIES**+ Work across a global organization to identify, analyze, and drive remediation for vulnerabilities in Wabtec's Products+ Analyze, record, and track the vulnerabilities from various sources such as penetration test, VDP, Scanning tools etc.,+ Proactively review the latest vulnerability alerts to determine relevancy and urgency+ Maintain, Monitor and mature vulnerability management process and procedures+ Conduct Vulnerability Awareness and Program Training webinars with internal stakeholders+ Actively contribute to the automation of vulnerability management processes+ Own vulnerability management tool and its integrations+ Coordinate for Vulnerability Disclosure and Product Security Incident Response (PSIRT) processes/activities+ Provide technical advice on mitigating measures and solutions to reduce risk.+ Provide and report on KPIs, SLAs, and other program metrics+ Engage with various internal stakeholders including Engineering and Infrastructure teams to drive vulnerability remediation per program policy and SLAs.+ Attend and participate in release management discussions and meetings, as required.**Qualifications and Skills** :+ Bachelor's degree from an accredited college/universityin computer science / engineering or equivalent work experience+ 6-8 years' experience in Cybersecurity, with 3-5 years focus on Threat and Vulnerability Management domain+ Good Knowledge of common vulnerability frameworks (CVSS, OWASP Top 10).+ Experience using vulnerability scanning / management tools (e.g., ThreadFix, CodeDX, Tenable, Qualys)+ Knowledge of Secure SDLC methodologies+ Knowledge of system, application, and database hardening techniques and practices.+ Knowledge of scripting languages (e.g., Python, PowerShell)+ Experience using MS Excel, PowerPoint, with PowerBI a plus+ Ability to collaborate effectively as part of a global cross functional team, working independently with minimal supervision.+ Detail Orientated with good analytical skills,+ Ability to effectively communicate across a variety of audiences and skill sets+ Ability to identify and communicate meaningful trends with the data provided+ Excellent written and verbal communications.+ Professional Cyber Security certifications e.g., CEH, Security+, CySA+, GSEC, GEVA a plus\#LI-SH1Wabtec Corporation is committed to taking on the world's toughest challenges. In order to fulfill that commitment we rely on a culture of leadership, diversity and inclusiveness. We aim to employ the world's brightest minds to help us create a limitless source of ideas and opportunities. We believe in hiring talented people of varied backgrounds, experiences and styles---people like you! Wabtec Corporation is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or protected Veteran status. If you have a disability or special need that requires accommodation, please let us know.

Keywords: Wabtec, Trenton , Senior Vulnerability Management Analyst - Product Cybersecurity, Executive , Trenton, New Jersey