Vulnerability Management Analyst; Information Security Specialist

Vulnerability Management Analyst

The Vulnerability Management Analyst position with the Office of Administration offers a chance to protect state systems while growing valuable technical skills. In this vital role, you will actively participate in actions that reduce the threat landscape and help reduce risk to the Commonwealth and its data. You will join a team that works to spot and prevent weaknesses before they become problems.

Support the safety of digital tools used across the Commonwealth.

• Scan Oversight:
  Conduct vulnerability scans across hosts, applications, and networks
• Asset Coverage:
  Review configurations and ensure all Commonwealth assets receive required assessments
• Issue Resolution:
  Troubleshoot problems that occur during or after scanning activities
• Data Review:
  Analyze scan results and other information to reduce vulnerabilities and risk
• Tool Management:
  Support management of scanners, agents, and information security software
• Team Support:
  Assist analysts who perform application level scanning and help maintain security standards

• Full-time employment
• Work hours are 8:00 AM to 5:00 PM, Monday - Friday, with 60-minute lunch
• Telework:
  You may have the opportunity to work from home (telework) part-time. Position will be required to work in the office two days per week. In order to telework, you must have a securely configured high-speed internet connection and work from an approved location inside Pennsylvania. If you are unable to telework, you will have the option to report to the headquarters office in Harrisburg.
  
  The ability to telework is subject to change at any time. Additional details may be provided during the interview.
• Salary:
  In some cases, the starting salary may be non-negotiable.

Minimum Experience and Training Requirements:

• One year as an Information Security Specialist 1 (Commonwealth job title or equivalent Federal Government job title, as determined by the Office of Administration); or
• Three years of experience performing technical work in information technology security, and an associate’s degree in any information technology field; or
• One year of experience performing technical work in information technology security, and a bachelor’s degree in any information technology field; or
• An equivalent combination of experience and training.

• This particular position also requires two or more years of full-time professional experience troubleshooting Enterprise networks or Enterprise network related issues.
• You must meet the PA residency requirement. For more information on ways to meet PA residency requirements, follow the link and click on Residency Guidelines.
• You must be able to perform essential job functions.

• You must pass a background investigation and meet Criminal Justice Information Services (CJIS) compliance requirements.
• A conditional offer of employment will require an in-depth Pennsylvania State Police background check.

• 711 (hearing and speech disabilities or other individuals).

The Commonwealth is an equal employment opportunity employer and is committed to a diverse workforce. The Commonwealth values inclusion as we seek to recruit, develop, and retain the most qualified people to serve the citizens of Pennsylvania. The Commonwealth does not discriminate on the basis of race, color, religious creed, ancestry, union membership, age, gender, sexual orientation, gender identity or expression, national origin, AIDS or HIV status, disability, or any other categories protected by applicable federal or state law.

All diverse candidates are encouraged to apply.