Work in Washington Veterans Jobs

Technology - Information Security - Vulnerability Threat Management 100% Remote (working EST) About the Team The Cyber Defense & Vulnerability Threat Management teams are critical to the strategic foundation for delivery of our products, most notably the secure delivery of our new Digital SAT and AP programs. We are a highly motivated group of cyber security experts who take a proactive approach to ensuring a strong security posture. We partner across the organization to mature our Threat management and Incident Response procedures and are constantly seeking and experimenting with new technologies. We are currently using a variety of cutting-edge tools that provide comprehensive cyber security operations for the College Board's critical infrastructure in support of the College Board's mission to connect students to college success and opportunity. College Board is committed to creating an inclusive environment where all team members feel valued, respected, and supported in their work. We welcome individuals from diverse backgrounds and experiences to join our team and contribute to our ongoing success. About the Opportunity As our Cyber Threat Analyst, you will be integral in evolving, transforming, and executing our Vulnerability & Threat Management (VTM) program which is crucial to College Board's health and success. You will execute on and support a robust, comprehensive VTM program that spans multiple legacy and future-facing domains. Looking across a vast portfolio of applications, endpoints, on-premises networks, and cloud environments, you will ensure thorough scanning and monitoring of all College Board assets. You will support development of systems and processes to integrate and assess all pertinent data from those scans and external feeds to create efficient action plans needed to maintain the security of College Board data and systems. You will be hands-on, bringing security industry knowledge that evolves with current and emerging threats as well as an ongoing understanding of key business and technological processes. You will manually validate detected vulnerabilities and assist as set owners with remediation efforts. You will work closely with multiple teams, including the Governance, Risk and Compliance Office (GRC), Product Security, Endpoint Engineering, Systems Engineering, Security Architecture and Design, and the Cyber Defense team. Your ability to quicky assess and validate information on threats and vulnerabilities, identify their context, prioritize findings relative to risk, and develop action plans aligned with security best practices, industry compliance requirements, and business demands will be essential. Additionally, you will help others interpret, understand, and apply information security policies and standards to mitigate information security risks. In the role, you will: * Plan and execute vulnerability and compliance scans across the infrastructure * Collaborate with infrastructure and application teams on security vulnerability remediation or patch management validation * Manually validate web application and network-based vulnerabilities detected through automated scanning mechanisms * Create custom vulnerability scanning templates * Understand the organizations tech stack and identify potential threats by monitoring intelligence feeds * Identify gaps in organizational security and make recommendations for remediations * Triage request for security scans from infrastructure and application teams * Develop procedures for the review and assessment of vulnerability scan results * Collaborate with high-performing Agile teams and individuals throughout the organization to accomplish goals * Track tasks through Jira in an agile environment * A To view the full job description,