Sign upSign in

Cyber Security Vulnerability Management Engineer

Hillsborough County5 months ago
Tampa, FL, United States
On-site
Full-time
Junior Level (1-3 years)
Apply to Job

Job Description

Position Overview

Responsible for the performance of highly complex cyber security functions related to the design, installation, maintenance, auditing, investigation, and assessment of software applications, networks, and the County's enterprise level information systems. Proactively identifies and implements security measures to prevent emerging vulnerabilities using diverse tools and methodologies. Uses sound judgment to assess risk, conduct audits, review data, collaborate with other technology divisions, and write reports to advise leadership. The ideal candidate is highly analytical and detail-oriented with a strong foundation in network security, threat detection, and incident response, and possesses hands-on experience with compliance standards such as HIPAA, PCI-DSS, NIST, and frameworks like the MITRE ATT&CK.

Starting Salary: $75,129 - $97,676 [max: $137,696]

Key Responsibilities

  • Conduct thorough assessments of software applications, networks, and systems to identify security vulnerabilities and weaknesses.
  • Utilize various tools and methodologies to perform vulnerability scanning, penetration testing, and code review.
  • Collaborate with cross-functional teams to prioritize and mitigate vulnerabilities based on potential impact and risk.
  • Provide detailed reports outlining vulnerabilities, potential impacts, and recommendations for remediation.
  • Work closely with developers and system administrators to verify the implementation of security patches, fixes, and improvements.
  • Participate in designing and implementing security measures to prevent future vulnerabilities and assist in incident response activities.
  • Utilize frameworks such as MITRE ATT&CK to map adversary tactics and design threat-hunting scenarios.

Required Qualifications

  • Bachelor's degree from an accredited college or university in information security or a related technology field.
  • Three years of experience in information security system administration and risk assessment within an enterprise environment.
  • Three years of experience leveraging cybersecurity tools (SIEM, EDR, vulnerability scanning, and web application security) for threat detection and mitigation; or an equivalent combination of education, training, and experience.

Benefits & Perks

  • Benefits: Click HERE to view our Benefits at a glance

Required Skills

Threat Modeling
Incident Response
SIEM
Vulnerability Scanning
Endpoint Protection
MITRE ATT&CK
Compliance (HIPAA, PCI-DSS, NIST)
Network Security
Code Review
IDS/IPS
Security Auditing
Penetration Testing
Risk Assessment