Senior Cyber Security Analyst - Product Vulnerability Management

Schneider Electric is seeking a Senior Cybersecurity Analyst (Product Vulnerability Management) in Boston, MA; Nashville, TN.

This position will report to Schneider Electric's Head of Vulnerability Management.

The successful candidate will support coordinated disclosure of vulnerabilities on all Schneider Electric products.

As Senior Cybersecurity Analyst, you will support in coordinating the end to end process of vulnerability response lifecycle from intake to diclosure and you will be committed to remediation of security vulnerabilities in the products within reasonable time depending on the severity of the issue.

You will partner with external security researchers and internal stakeholders like BU, legal, communication, and customer support for remediation and disclosure of the vulnerabilities.

You will handle the effective management of customer and product related vulnerabilities, as well as continuous improvement of the necessary processes (e.g.

Threat Intelligence, Inventory Management, Vulnerability Scanning etc.).

You will collaborate with the Business Unit teams, as well as all other units where collaboration is needed for Cybersecurity (e.g.

GSC, Corporate Legal, Schneider Digital, Communications).

What will you do?

• Responsible for driving Vulnerability Management process execution in the Business Units whether externally reported or Internally discovered (Intake, Triage, Planning, Execution, Customer Notification, lessons learned etc)

• Coordinate and follow-up with the Division Cyber Security Officer and CERT Leaders for SLA adherence

• Escalate the cases that require attention

• Work with the BU and propose improvement of the related processes or identified gaps in the operations

• Support Security Notification process for patch Tuesday monthly releases

• Provide Timely response and update to the researchers

• Prepare detailed operational reports to bring insights on focus areas for BU and CERT leaders

• Train the CyberSecurity people and Offer Managers in the Business Units on Vulnerability Management

• Prepare and maintain Knowledgebase for the BU

• Act as a subject matter expert in the Vulenrability Management process and advocate the process across the BU

We know skills and competencies show up in many ways and can be based on your life experience.

If you do not necessarily meet all the requirements that are listed below, we still encourage you to apply for the position.

What qualifications will make you successful for this role?

• Overall 7+ years experience and 2+ years CyberSecurity experience

• Bachelor's degree in Cybsesecurity, Computer Science, Information Systems or Engineering/Science required

• Good and proven CyberSecurity skills and experience in issue management as well as designing/defining proactive mitigation strategies

• Extensive understanding of triaging and assessing risks associated with cybersecurity vulnerabilities in Critical Infrastructure products (CVS...