×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Systems Analyst Data Security

Senior Vulnerability and Threat Analyst

Job in New York, New York County, New York, 10261, USA
Listing for: Monroe University
Full Time position
Listed on 2026-06-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Systems Analyst, Data Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Location: New York

Overview of the Position

The Senior Vulnerability and Threat Analyst is a senior individual contributor within the newly-formed Cybersecurity Nucleus at Monroe University. This role owns three tightly-integrated disciplines: continuous vulnerability management across Monroe’s environment, coordination of internal and external penetration testing activities, and consumption of threat intelligence relevant to the higher-education sector. As Monroe rebuilds its security posture following recent institutional events, the Senior Vulnerability and Threat Analyst serves as the primary analyst responsible for identifying, prioritizing, and driving remediation of technical exposures across the institution.

This role partners closely with Monroe’s IT team, the outsourced Security Operations Center, and external specialized firms engaged for forensics or compromise assessment. The Senior Vulnerability and Threat Analyst also serves as the primary supervisor of the Student Cyber Corps program when it launches, providing faculty-aligned oversight of student-led security engagements.

Core Responsibilities
  • Establish and operate a continuous vulnerability management program covering endpoints, servers, network infrastructure, cloud workloads, and critical applications.
  • Prioritize vulnerabilities based on exploitability, institutional exposure, and business impact — not raw CVSS scores — and drive remediation in partnership with IT operations.
  • Coordinate internal and external penetration testing engagements, including scoping, vendor management, findings validation, and remediation tracking.
  • Consume and operationalize higher-education-specific threat intelligence through REN-ISAC membership, commercial threat feeds, and government advisories (CISA, FBI IC3).
  • Serve as the primary Monroe contact for REN-ISAC community engagement, including participation in sector-wide information sharing and peer collaboration.
  • Conduct proactive threat hunting in the environment to identify indicators of compromise, persistence mechanisms, and suspicious activity not surfaced by automated detections.
  • Partner with the outsourced Security Operations Center to tune detection rules, improve alert quality, and close visibility gaps.
  • Own the scoping, vendor selection, and project management of external specialized engagements such as compromise assessments and data discovery projects, in coordination with the CISO.
  • Supervise the Student Cyber Corps program when launched — designing engagement scope, reviewing student work product, validating findings, and ensuring no student access touches production PII or sensitive systems.
  • Produce regular vulnerability and threat landscape reporting for the CISO, the CIO, and institutional leadership, translating technical exposure into institutional risk language.
  • Support GLBA Safeguards Rule compliance by maintaining continuous, documented evidence of vulnerability management and penetration testing activities.
  • Contribute to incident response investigations as a technical analyst, particularly where historical vulnerability data or threat intelligence is relevant.
  • Participate in Monroe’s incident response on-call rotation once established.
Skills and Attributes
  • Deep hands-on expertise with enterprise vulnerability management platforms (Tenable, Rapid7, Qualys, or equivalent), including scan policy design, credentialed scanning, and integration with remediation workflows.
  • Working knowledge of penetration testing methodologies (PTES, OSSTMM) and experience coordinating or conducting internal or external pen tests.
  • Familiarity with automated and continuous testing platforms (Pentera, Horizon3, Ridge Bot, or similar) is preferred.
  • Fluency in threat intelligence frameworks — MITRE ATT&CK, Cyber Kill Chain, STIX/TAXII — and practical experience applying them to operational decisions.
  • Strong scripting skills in Python, Power Shell, or Bash for automation, data analysis, and custom tooling.
  • Experience with SIEM platforms (Microsoft Sentinel, Splunk, or equivalent) and the ability to write effective detection logic.
  • Understanding of higher-education threat landscape — ransomware targeting education, phishing against…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search