Sr Analyst, Vulnerability Management

Are you looking to Optimize your life? Start your exciting path to a rewarding career today!
We are Optimum, a leader in the fast-paced world of connectivity, and we're on the hunt for enthusiastic professionals to join our team! We understand that connectivity isn't just a luxury anymore - it's a necessity that empowers lives, fuels businesses, and drives innovation. A career at Optimum means you'll be enabling progress and enhancing lives by providing reliable, high-speed connectivity solutions that keep the world connected. We owe our success to our amazing product, commitment to our people and the connections we make in every community.
If you are resourceful, collaborative, team-oriented and passionate about delivering consistent excellence, Optimum is the Company for you!
We are Optimum!
Job Summary
The Senior Vulnerability Management Analyst is responsible for identifying, assessing, prioritizing, and driving remediation of security vulnerabilities across the organization's infrastructure, applications, and endpoints. This role partners closely with IT operations, engineering, architecture, and security teams to ensure timely patching, risk reduction, risk remediation, and compliance with security standards and regulatory requirements. The role requires an individual with strong communication and organizational skills, and the technical capability to understand, interpret, and prioritize vulnerability findings.
Responsibilities
Vulnerability Management • Conduct continuous vulnerability scanning across servers, endpoints, cloud environments, network devices, and applications • Conduct targeted network scanning for non-traditional devices• Analyze vulnerability scan results to identify risk severity, exploitability, and business impact • Prioritize vulnerabilities using risk-based frameworks (e.g., CVSS, threat intelligence, asset criticality) • Track vulnerabilities from identification through remediation and validation • Monitor emerging threats, zero-day vulnerabilities, and vendor advisories
Patch Management • Manage patching activities for operating systems, applications, firmware, and third-party software • Work with IT operations and system owners to schedule, test, and deploy patches in alignment with change management processes • Validate patch deployments and confirm remediation through rescanning • Maintain patch compliance metrics and remediation SLAs
Reporting & Metrics • Produce regular vulnerability and patch status reports for technical teams and executive stakeholders • Track KPIs such as, SLA compliance, organization wide exposure, % remediation Support internal and external audits by providing evidence of vulnerability and patch management activities • Administration of vulnerability management reporting and tracking tools, including maintaining integrations with on prem, cloud, and code vulnerability management platforms
Collaboration & Process Improvement • Collaborate with Threat Management and Security Operations teams to identify emerging industry threats and implement protections to safeguard our organization• Works closely with the Vulnerability Management Program Manager to assist in day-to-day program operations, as well as long term strategic program development• Mentor and uplift junior level staff• Establish remediation workflows with infrastructure, cloud, endpoint, and application teams• Serve as subject matter expert when establishing and maintaining vulnerability management policies, standards, and procedures • Identify opportunities to automate scanning, reporting, and remediation processes • Participate in incident response activities related to vulnerability exploitation • Support Governance team in audit and penetration testing by addressing findings and implementing remediations or compensating controls in a timely manner• Participate in additional projects and tasks, at the direction of Security Leadership
Qualifications
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience • Minimum 5 years of experience in vulnerability management, patch management, or security operations • Strong understanding of operating systems (Windows, Linux), networking, and enterprise infrastructure • Demonstrated experience with vulnerability scanning tools (e.g., Tenable, Qualys, Rapid7, CrowdStrike Exposure Management) in a complex network environment• Familiarity with patch management tools and platforms (e.g., SCCM, Intune, WSUS, JAMF, Ansible) • Knowledge of CVE, CVSS, NIST, CIS benchmarks, and common threat vectors • Ability to clearly communicate technical risk to non-technical stakeholders, by assessing and focusing on business impact •
Preferred Qualifications• At least 1 security certifications such as Security+, CISSP, CEH, GSEC, or equivalent • Experience with cloud platforms and cloud-native vulnerability tools. • Experience with integrating into CI/CD pipeline to remediate vulnerabilities, prior to code entering production• Scripting or automation experience • Experience supporting compliance frameworks (ISO 27001, SOC 2, PCI DSS,)
At Optimum, we're fueled by our four core pillars: Taking Ownership, Upholding Transparency, Creating Community, and Demonstrating Expertise. Our commitment to empowering employees to take responsibility and embrace proactive problem-solving underpins Taking Ownership. Upholding Transparency is at the core of our culture, with open and honest communication fostering trust among our dedicated team and loyal customers. Creating Community is more than a goal; it's our daily commitment to fostering an environment of collaboration, innovation, and positivity. Demonstrating expertise is a promise we uphold through continuous learning and engagement with our customers to consistently deliver top-quality products and services. These pillars not only shape our culture but define Optimum as a place of excellence, trustworthiness, and thriving community, and we invite you to be a part of our journey.
If you have the drive to succeed and are ready to embark on a thrilling career, seize this opportunity today, and join our winning team, so together, we'll shape the future of connectivity.
All job descriptions and required skills, qualifications and responsibilities for a particular position are subject to modification by the Company from time to time, in the Company's discretion based on business necessity.
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, national origin, religion, age, disability, sex, sexual orientation, gender identity or protected veteran status, or any other basis protected by applicable federal, state, or local law. The Company provides reasonable accommodations upon request in accordance with applicable requirements.
Optimum collects personal information about its applicants for employment that may include personal identifiers, professional or employment related information, photos, education information and/or protected classifications under federal and state law. This information is collected for employment purposes, including identification, work authorization, FCRA-compliant background screening, human resource administration and compliance with federal, state, and local law.
Applicants for employment with the Company will never be asked to provide money (even if reimbursable) as part of the job application or hiring process. Please review our Fraud FAQ for further details.
Pay is competitive and based on a number of job-related factors, including skills and experience. The starting pay rate/range at time of hire for this position in New York is 100,246.00 - $164,689.00 / year. For other locations, please inquire with your recruiter. The rates/ranges provided herein are the anticipated pay at the time of hire, and do not reflect future job opportunity.
Nearest Major Market: Long Island
Nearest Secondary Market: New York CIty