Threat vulnerability Management and reporting Consultant ,Remote

Threat Vulnerability Management And Reporting Consultant

Remote • Responsible for working with individual teams and SLOs in managing threat mitigation for operating systems, third party software, and application specific vulnerabilities. • Using tools from a wide variety of security systems and platforms you will diagnose risk information for actionable tasks by TVM analysts, server engineers, and endpoint engineering teams. • Routine reporting to specific targeted audiences, technical, Service level, managerial, along with coordinating status meetings with SLOs and application leads. • Trend analysis for diagnostic use and historical reporting. • Works closely with the TVM deployment staff and application Leads to reduce risk to the organization maintaining by SLAs and applying priority on critical, high and immediate response needs as required. • Configuration management leader working with all levels of engineering to identify GPOs, base line configurations, golden image updates, and registry settings, for maintaining security standards. • Utilizes Optum’s Project Management best practices, procedures, and standard methodologies to ensure all assigned activities deliver quality and anticipated results • Ensures all needed legacy applications and peripherals are reviewed for SLO owners to mitigate risk. • Continuously review processes, solicit feedback from peer teams for process improvement and operational savings opportunities. Threat Management coordination Summary: • Responsible for engaging teams to formulate relationships to achieve successful completion of risk mitigation. • Coordinate teams of application teams, service level owners, and technical owners to status current state, forecasted efforts, and problem areas requiring escalation. • Works closely with regional security teams and technical staff to ensure completion of assigned tasks and tracking completion of those items. • Project management for small, short-term efforts as prescribed by security and infrastructure TVM management. Primary Responsibilities: • Ability to identify systemic security issues based on the analysis of vulnerability and configuration data. • Determine Common Vulnerability Exposure, CVE, prioritize per SLA and drive to completion • Ability to share meaningful insights about the context of an organization’s threat environment that improves its security posture. Monitor and provide system owner updates for application and software related updates. • Maintain operational schedules and reports to engineering, application leads, and management. • Reporting state of TVM regularly via reporting tools within the platforms and utilizing BI tools. • Knowledge of computer networking concepts, protocols, and network security methodologies. Knowledge of operating systems and patch methodologies within Windows, Linux, and Oracle platforms. • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). • Knowledge of cybersecurity and privacy principles. • Knowledge of cyber threats and vulnerabilities. • Knowledge of systems diagnostic tools and fault identification techniques. • Knowledge of system administration, network, and operating system hardening techniques. • Works closely with project team members to organize project tasks to be carried out as part of analysis and development and ensures they are completed within project timelines. • Reviews project plans daily, prepares and submits status reports, monitors project deliverables, and communicates to management any issues that may impact the team’s delivery. • Collaborates with project teams and various internal stakeholder groups on an ongoing basis to ensure projects are delivered on time, within budget, adhere to high quality standards, and meet customer expectations. • Works with project team to identify and assess project risks and issues. • Takes a disciplined approach to managing project issues and risks. • Solicits feedback and guidance of Optum’s standard methodologies, tools, and best practices from team leads, project managers, leadership, and project team members. • Accountable for seeking learning opportunities to continuously develop professional/technical knowledge which will be useful in current position and/or career aspirations.