Role description

Vulnerability Management (VM) Analyst

Vulnerability Analyst II

UST is searching for a skilled Vulnerability Management (VM) Analyst to support enterprise security operations, focusing on identifying, assessing, and remediating vulnerabilities across cloud and application environments.

The opportunity:
• Perform vulnerability scans across infrastructure, applications, and cloud environments using tools such as Tenable, AWS Inspector, and Black Duck.
• Analyze scan results to identify, validate, and prioritize vulnerabilities.
• Assess severity and business impact of vulnerabilities and prioritize remediation.
• Work with application, DevOps, and infrastructure teams to drive remediation and track issues to closure.
• Support secure SDLC by identifying vulnerabilities in product-based environments.
• Conduct cloud security assessments in AWS environments.
• Generate and communicate vulnerability reports and remediation recommendations to stakeholders.

This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.

What you need:
• Experience Level:
• 2-4 Years
• Experience in Vulnerability Management (2-4 years)
• Hands-on experience with Tenable, AWS Inspector, Black Duck, and Nucleus
• Understanding of vulnerability scanning, risk prioritization, and remediation
• Knowledge of OWASP Top 10, CVE, and CVSS
• Experience in application security and cloud security (AWS)
• Preferred Qualifications
• Experience in biotech / life sciences domain
• Experience working on product-based environments
• Familiarity with DevSecOps practices
• Knowledge of compliance frameworks (HIPAA, GxP)
• Soft Skills:
• Strong analytical and problem-solving skills
• Effective communication and collaboration
• Ability to interpret and present security data
• Education:
• Bachelor's degree in Computer Science, Cybersecurity, or related field

Compensation can differ depending on factors including but not limited to the specific office location, role, skill set, education, and level of experience. UST provides a reasonable range of compensation for roles that may be hired in various U.S. markets as set forth below.

Role Location: Remote-Canada

Compensation Range: $78,000-$98,000

Benefits

Full-time, regular employees accrue a minimum of 10 days of paid vacation per year, receive 6 days of paid sick leave each year (pro-rated for new hires throughout the year), paid holidays, and are eligible for paid bereavement leave and jury duty. They and their dependents residing in Canada are eligible for Supplemental Healthcare coverage, as well as Company-paid Employee Only basic life insurance and accidental death and dismemberment coverage.

Full-time temporary employees receive 6 days of paid sick leave each year (pro-rated for new hires throughout the year). They and their dependents residing in Canada are eligible for Supplemental Healthcare coverage, as well as Company-paid Employee Only basic life insurance and accidental death and dismemberment coverage.

Part-time regular and temporary employees receive 6 days of paid sick leave each year (pro-rated for new hires throughout the year).

All Canadian employees who work in a province, territory or locality with more generous paid sick leave benefits than specified here will receive the benefit of those sick leave laws.

#UST

#LI-AP4

#LI-Remote