The site navigation utilizes arrow, enter, escape, and space bar key commands. Left and right arrows move across top level links and expand / close menus in sub levels. Up and Down arrows will open main level menus and toggle through sub tier links. Enter and space open menus and escape closes them as well. Tab will move on to the next part of the site rather than go through menu items.
The Office of Cyber Security ensures cyber security risks to the confidentiality, integrity, and availability of Penn State Health (PSH) and College of Medicine (COM) information are identified, assessed, and maintained at acceptable levels. This is accomplished through the measurement of risk and communication of the risk management framework.
The Cyber Vulnerability Assessment Analyst (CVAA) is responsible for ensuring operational excellence of cyber security vulnerability management activities, including but not limited to:
Performing vulnerability assessments on PSH and COM Information Systems using established processes
Ensuring communication and awareness of the PSH and COM Vulnerability Management program
Ensuring vulnerabilities are appropriately managed within risk appetite tolerance and limits
Contributing to the aggregation and reporting of vulnerability metrics and information
Supporting cyber security strategies and reporting
Acting as a subject matter expert in vulnerability management and engaging with cross-functional teams
Bachelor's degree in computer science, cybersecurity, information technology or a related field and 8 years of experience in cyber risk management OR 12 total years of experience and education.
Proven understanding of cybersecurity vulnerability assessment and risk management procedures and methodologies
Prior experience operating and managing a vulnerability management tool (Tenable Nessus, Rapid7 Nexpose/IVR, Qualys)
Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server, and database security
Strong knowledge industry standards regarding vulnerability management including Common Vulnerabilities and Exposures (CVE) and Common Vulnerability Scoring System (CVSS)
Strong knowledge of cyber security principles, standards, practices, and technologies
In addition to a rewarding career, we also offer great benefits including but not limited to:
Medical, Dental and Vision Benefits (No waiting period)
T uition Reimbursement
G enerous Paid Time Off and Personal Time
S hort term and long term disability
4 01K and more!
This job description is a general outline of duties performed and is not to be misconstrued as encompassing all duties performed within the position. All individuals (including current employees) selected for a position will undergo a background check appropriate for the position's responsibilities.
Penn State Health is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity or expression, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please call 717-531-8440 between the hours of 8:30 AM and 4:30 PM, Eastern Standard Time, Monday - Friday, email email@example.com or download our Accommodation Instructions for Job Applicants PDF for more detailed steps for assistance.
Internal Number: 17496
About Penn State Health
At Penn State Hershey, our mission is to enhance the quality of life and serve our community through improved health, the education of health professionals, and the discovery of knowledge. For us, service excellence is not only for our patients but also our employees. It means valuing each and every employee.