Updated 15 days ago

THREAT INTELLIGENCE & VULNERABILITY MANAGEMENT SPECIALIST

Seattle, WA 98185
Full-time, Part-time
As a UW employee, you have a unique opportunity to change lives on our campuses, in our state and around the world. UW employees offer their boundless energy, creative problem-solving skills and dedication to build stronger minds and a healthier world.

UW faculty and staff also enjoy outstanding benefits, professional growth opportunities and unique resources in an environment noted for diversity, intellectual excitement, artistic pursuits and natural beauty.

The IT team at the Applied Physics Laboratory at the University of Washington is hiring – see yourself at APL!

The Applied Physics Laboratory is a research unit at the University of Washington. Our research expertise is in ocean physics and engineering, ocean and medical acoustics, polar science, environmental remote sensing, and signal processing. We conduct research and development that is sponsored by a variety of federal and state agencies, and take great pride in our long-standing status as a US Navy-designated University Affiliated Research Center (UARC). Our work takes place not only on the University of Washington campus and medical centers, but in field locations around the world – at sea, in the air, and on polar ice caps. We apply rigorous scientific inquiry and engineering excellence in pursuit of solutions to important problems for the good of our region, nation, and world.

Diversity is a core value at University of Washington and the Applied Physics Laboratory shares this commitment. We are focused on building and sustaining an inclusive and equitable research environment for all students, staff, and collaborators. We believe every member on our team enriches our community by exposing us to a broad range of ways to understand and engage with the world, identify challenges, and to discover, design and deliver solutions.

APL has an outstanding full time opportunity for a Threat Intelligence & Vulnerability Management Specialist.

The Threat Intelligence & Vulnerability Management Specialist is responsible for working with the Cybersecurity Manager, APL-UW IT Director, and team to define the strategic vision, roadmap, principals, and standards for Threat Intelligence, Vulnerability Management, and Incident Response capabilities. The Threat Intelligence & Vulnerability Management Specialist is responsible for providing expertise and understanding of the vulnerability and threat landscape to mitigate risk and understand the threats that might impact the APL environment.

This role is responsible for scanning, tracking, analyzing, and reporting on IT and cyber related vulnerabilities for infrastructure and end-user devices alike as part of the Threat Intelligence & Vulnerability Management Program. They will work closely with APL-UW IT Staff, Security Team, Managed Service Providers and other partners to help develop a program that is resilient and supportable. They will assist in monitoring and protecting APL-UW applications and infrastructure against intrusion, hacking attempts, viruses, malware, and vulnerabilities and lead Incident Response procedures.

APL IT systems and infrastructure consist of a mixed-mode, ad-hoc landscape which presents a unique challenge with effectively and securely managing the environment. The most difficult aspect of this position is the lack of a robust intrusion detection and prevention program and supporting processes that meet the demands and sophistication of today's technology and related attacks. The candidate will work along-side the Cybersecurity Manager and IT Director to create a program to manage vulnerabilities and threat analysis.

The person selected for this Threat Intelligence & Vulnerability Management Specialist role will be a part of a dynamic IT team that supports APL's wide-reaching research enterprise. Your expertise will enable the success of researchers who are clearing hazardous seafloor debris from coastal areas, developing ultrasound technologies that advance medical care, conducting fieldwork on glaciers, polar regions, and the world's oceans, and performing robotic exploration beneath oceanic ice shelves and on space missions.

RESPONSIBILITIES:

Threat Intelligence & Vulnerability Management:

Oversee comprehensive vulnerability assessments and continuous monitoring of the IT environment across the organization; manage the entire lifecycle of vulnerabilities from discovery to remediation and work with all departments across the Laboratory to perform vulnerability assessments on systems or applications for new and existing systems; strengthen APL-UW IT's security culture, strategies, strategic goals, objectives and capabilities; educate and mature organizational posture against emerging and zero-day threats and provide technical documentation and guidance.

Incident Response:

Perform reactive incident response functions including but not limited to: host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs); examine firewall, web, database, and other log sources to identify evidence of malicious activity; investigate data breaches leveraging forensics tools; manage incident response engagements to scope work, guide forensic investigations, contain security incidents, provide guidance on longer term remediation recommendations, and comprise stakeholders as necessary.

REQUIREMENTS:

*Bachelor's degree in Computer Science, Computer Information Systems, Cybersecurity or similar technical discipline AND at least 2 years' experience in Information Security.

*Experience delivering threat intelligence processes, methodologies, technology, products, or tools; extensive experience with core vulnerability management scanners (e.g. Tenable, Rapid7, Qualys etc.); extensive experience with web application scanners (e.g. WebInspect, Accunetix, Burp, etc.)

*Ability to prioritize impactful vulnerabilities and reduce noise often associated with vulnerability tools.

*Strong knowledge and/or experience with Threat Intelligence, Threat Hunting or related topics including threats to operational technology.

*Ability to innovate security approaches and take ownership, self-motivate, and deliver results in highly ambiguous, yet maturing IT environment.

*Excellent written and verbal communication skills.

*Experience generating automated vulnerability metrics to measure service and program effectiveness and consistency.

*Experience working with Mac, Windows, Linux and/or other Unix-like variants.

*Thorough understanding of TCP, UDP, HTTP, IP and other network protocols.

*The ability to perform deep dive analysis of threats and techniques, tactics and procedures (TTPs) and produce high-quality written, actionable intelligence on current and developing threats, particularly those faced by Higher Education and Research Institutions.

Equivalent education/experience will substitute for all minimum qualifications except when there are legal requirements, such as a license/certification/registration.

*Incumbent will be required to submit for a Department of Defense Secret-level security clearance within the first 3-6 months of employment, and once granted must maintain eligibility to hold a Secret-level clearance.*

DESIRED:

*5+ years working in Information Security, at least 3 of them working within a Vulnerability Management role.

*The ability to automate and script tasks using preferred programming language (e.g. GoLang, Python, Ruby, Perl, BASH); ability to use and write scripts against common web APIs.

*Knowledge of cloud platforms and highly concurrent systems; knowledge of container technology and how to assess the security posture of images.

*Experience in regulated environments (FedRAMP, SOC 2, etc.).

*Technical security certifications a plus.

CONDITIONS OF EMPLOYMENT:

May be subject to successful completion of E-Verify process.

Application Process:
The application process for UW positions may include completion of a variety of online assessments to obtain additional information that will be used in the evaluation process. These assessments may include Work Authorization, Cover Letter and/or others. Any assessments that you need to complete will appear on your screen as soon as you select "Apply to this position". Once you begin an assessment, it must be completed at that time; if you do not complete the assessment you will be prompted to do so the next time you access your "My Jobs" page. If you select to take it later, it will appear on your "My Jobs" page to take when you are ready. Please note that your application will not be reviewed, and you will not be considered for this position until all required assessments have been completed.

Applicants considered for this position will be required to disclose if they are the subject of any substantiated findings or current investigations related to sexual misconduct at their current employment and past employment. Disclosure is required under Washington state law.

Committed to attracting and retaining a diverse staff, the University of Washington will honor your experiences, perspectives and unique identity. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable and welcoming.

The University of Washington is a leader in environmental stewardship & sustainability, and committed to becoming climate neutral.

The University of Washington is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, or genetic information.

To request disability accommodation in the application process, contact the Disability Services Office at 206-543-6450 or dso@uw.edu.

Apply for this job

Similar jobs

Posting ID: 553631900Posted: 2021-07-15Job Title: Threat Intelligence Vulnerability Management