The Senior Systems Engineer Vulnerability Operations is responsible for driving operational remediation of vulnerabilities across Universal Destinations & Experiences (UDX) technology environments. This role works closely with NBCUniversal and UDX asset teams Cyber infrastructure teams endpoint teams and application owners to translate vulnerability findings into actionable remediation plans coordinate closure activities validate progress and improve the processes tooling reporting and automation used to reduce enterprise risk. The role is focused on vulnerability actioning and closure rather than cyber governance ownership ensuring vulnerable assets applications endpoints and platforms are remediated in alignment with enterprise standards and agreed service levels.
MAJOR RESPONSIBILITIES:
Coordinate and drive vulnerability remediation activities across UDX technology environments including endpoints servers applications databases network devices and other managed assets. Review vulnerability findings determine ownership assess operational impact prioritize remediation work and partner with NBCUniversal and UDX asset teams Cyber and application owners to develop clear action plans through closure. Track remediation progress validate completion and communicate status blockers risks and escalations to stakeholders.
Operate and improve Vulnerability Operations processes tooling workflows and reporting. Build and leverage relationships with asset owners application teams endpoint operations infrastructure teams Cyber and vendors to increase vulnerability awareness improve remediation throughput and reduce mean time to patch. Support integration of vulnerability data with ticketing asset inventory endpoint management patching and orchestration platforms to create repeatable and measurable closure processes.
Develop automation and operational reporting that identifies remediation owners prioritizes work by severity and business risk monitors SLA performance and highlights aging or blocked vulnerabilities. Partner with Cyber on standards risk acceptance exception handling and threat context while maintaining operational accountability for coordinating remediation activities with the teams responsible for implementing fixes.
Serve as a technical subject matter expert for Vulnerability Operations by interpreting scan results validating vulnerability applicability coordinating patching and mitigation plans and helping teams resolve technical blockers. Assist with vulnerability and patch management efforts including tool administration asset scanning coordination remediation prioritization exception documentation stakeholder communications and recurring operational reviews with Cyber and technology owners.
Partner with Cyber teams application owners endpoint operations infrastructure teams and asset owners to reduce vulnerability exposure and prevent recurring issues. Analyze vulnerability and patching trends identify root causes recommend durable operational controls support change and release planning and provide consultative guidance so teams understand remediation requirements available tooling and expected closure timelines. Escalate risks and unresolved blockers in a timely and effective manner.
Understands and actively participates in Environmental Health & Safety responsibilities by following established UO policy procedures training and team member involvement activities.
Performs other duties as assigned.
EDUCATION:
Bachelors degree in Computer Science or equivalent.
5 years of experience in IT security compliance operations endpoint management systems engineering application support infrastructure support vulnerability remediation patch management or related technical operations roles including experience coordinating work across multiple technology teams and stakeholders.
Experience with vulnerability management patching asset inventory ticketing change management and operational reporting processes; experience working with Cyber or information security teams to remediate vulnerabilities and manage risk is preferred.
Extensive experience with hardware/software security lifecycle including regulations such as PCI HIPAA SOX etc.; ITIL Foundations preferred.
Web Proxy IPS IDS VPN Identity Management Email/Spam filter and SIEM experience preferred.
ADDITIONAL INFORMATION:
Strong understanding of vulnerability remediation operations including vulnerability intake ownership identification prioritization patching coordination mitigation tracking validation reporting and closure.
Ability to work effectively with Cyber NBCUniversal and UDX asset teams application owners endpoint operations infrastructure teams vendors and leadership to drive vulnerability closure and reduce operational risk.
Working knowledge of Windows Linux Active Directory endpoint management platforms application environments databases network technologies cloud or virtual desktop environments and vulnerability scanning or threat management tools.
Experience with vulnerability scanners vulnerability management systems endpoint management platforms patch management tools software deployment tools host-based security systems and ITSM/ticketing workflows.
Ability to analyze vulnerability data identify trends and root causes translate technical findings into actionable remediation guidance and communicate priorities to technical and non-technical stakeholders.
Ability to deliver quality operational outcomes on time manage competing priorities and maintain accountability for follow-up through vulnerability closure.
Experience creating or improving operational dashboards reports automations scripts or workflows that support vulnerability tracking remediation ownership SLA management and executive visibility.
Well versed in using scanning endpoint inventory patching and reporting tools to assess vulnerability exposure and coordinate remediation across distributed technology environments.
Knowledge of security and infrastructure technologies such as SIEM firewalls proxies endpoint protection DLP cloud platforms virtual desktop platforms and application security tools preferred.
Strong communication facilitation documentation and interpersonal skills with the ability to influence cross-functional teams clarify ownership remove blockers and drive measurable vulnerability reduction.
Overtime hours may be required to meet project deadline;
or equivalent combination of education and experience.
Your talent skills and experience will be rewarded with a competitive compensation package.
Universal Orlando Resort. Here you can.
Required Experience:
Senior IC
JOB SUMMARY:The Senior Systems Engineer Vulnerability Operations is responsible for driving operational remediation of vulnerabilities across Universal Destinations & Experiences (UDX) technology environments. This role works closely with NBCUniversal and UDX asset teams Cyber infrastructure teams e...
JOB SUMMARY:
The Senior Systems Engineer Vulnerability Operations is responsible for driving operational remediation of vulnerabilities across Universal Destinations & Experiences (UDX) technology environments. This role works closely with NBCUniversal and UDX asset teams Cyber infrastructure teams endpoint teams and application owners to translate vulnerability findings into actionable remediation plans coordinate closure activities validate progress and improve the processes tooling reporting and automation used to reduce enterprise risk. The role is focused on vulnerability actioning and closure rather than cyber governance ownership ensuring vulnerable assets applications endpoints and platforms are remediated in alignment with enterprise standards and agreed service levels.
MAJOR RESPONSIBILITIES:
Coordinate and drive vulnerability remediation activities across UDX technology environments including endpoints servers applications databases network devices and other managed assets. Review vulnerability findings determine ownership assess operational impact prioritize remediation work and partner with NBCUniversal and UDX asset teams Cyber and application owners to develop clear action plans through closure. Track remediation progress validate completion and communicate status blockers risks and escalations to stakeholders.
Operate and improve Vulnerability Operations processes tooling workflows and reporting. Build and leverage relationships with asset owners application teams endpoint operations infrastructure teams Cyber and vendors to increase vulnerability awareness improve remediation throughput and reduce mean time to patch. Support integration of vulnerability data with ticketing asset inventory endpoint management patching and orchestration platforms to create repeatable and measurable closure processes.
Develop automation and operational reporting that identifies remediation owners prioritizes work by severity and business risk monitors SLA performance and highlights aging or blocked vulnerabilities. Partner with Cyber on standards risk acceptance exception handling and threat context while maintaining operational accountability for coordinating remediation activities with the teams responsible for implementing fixes.
Serve as a technical subject matter expert for Vulnerability Operations by interpreting scan results validating vulnerability applicability coordinating patching and mitigation plans and helping teams resolve technical blockers. Assist with vulnerability and patch management efforts including tool administration asset scanning coordination remediation prioritization exception documentation stakeholder communications and recurring operational reviews with Cyber and technology owners.
Partner with Cyber teams application owners endpoint operations infrastructure teams and asset owners to reduce vulnerability exposure and prevent recurring issues. Analyze vulnerability and patching trends identify root causes recommend durable operational controls support change and release planning and provide consultative guidance so teams understand remediation requirements available tooling and expected closure timelines. Escalate risks and unresolved blockers in a timely and effective manner.
Understands and actively participates in Environmental Health & Safety responsibilities by following established UO policy procedures training and team member involvement activities.
Performs other duties as assigned.
EDUCATION:
Bachelors degree in Computer Science or equivalent.
5 years of experience in IT security compliance operations endpoint management systems engineering application support infrastructure support vulnerability remediation patch management or related technical operations roles including experience coordinating work across multiple technology teams and stakeholders.
Experience with vulnerability management patching asset inventory ticketing change management and operational reporting processes; experience working with Cyber or information security teams to remediate vulnerabilities and manage risk is preferred.
Extensive experience with hardware/software security lifecycle including regulations such as PCI HIPAA SOX etc.; ITIL Foundations preferred.
Web Proxy IPS IDS VPN Identity Management Email/Spam filter and SIEM experience preferred.
ADDITIONAL INFORMATION:
Strong understanding of vulnerability remediation operations including vulnerability intake ownership identification prioritization patching coordination mitigation tracking validation reporting and closure.
Ability to work effectively with Cyber NBCUniversal and UDX asset teams application owners endpoint operations infrastructure teams vendors and leadership to drive vulnerability closure and reduce operational risk.
Working knowledge of Windows Linux Active Directory endpoint management platforms application environments databases network technologies cloud or virtual desktop environments and vulnerability scanning or threat management tools.
Experience with vulnerability scanners vulnerability management systems endpoint management platforms patch management tools software deployment tools host-based security systems and ITSM/ticketing workflows.
Ability to analyze vulnerability data identify trends and root causes translate technical findings into actionable remediation guidance and communicate priorities to technical and non-technical stakeholders.
Ability to deliver quality operational outcomes on time manage competing priorities and maintain accountability for follow-up through vulnerability closure.
Experience creating or improving operational dashboards reports automations scripts or workflows that support vulnerability tracking remediation ownership SLA management and executive visibility.
Well versed in using scanning endpoint inventory patching and reporting tools to assess vulnerability exposure and coordinate remediation across distributed technology environments.
Knowledge of security and infrastructure technologies such as SIEM firewalls proxies endpoint protection DLP cloud platforms virtual desktop platforms and application security tools preferred.
Strong communication facilitation documentation and interpersonal skills with the ability to influence cross-functional teams clarify ownership remove blockers and drive measurable vulnerability reduction.
Overtime hours may be required to meet project deadline;
or equivalent combination of education and experience.
Your talent skills and experience will be rewarded with a competitive compensation package.