Vulnerability Management Analyst - 61089227

Full Job Description

This position is onsite in Columbia, South Carolina.

• Analyze vulnerability findings and remediation plans to validate remediation strategies and priorities. Monitor remediation activities within maintenance windows and established change management processes. Track remediation implementation progress and identify risks, delays, or compliance gaps.
• Monitor vulnerability remediation performance against established remediation SLOs. Maintain dashboards, reports, and performance metrics related to remediation compliance.
• Identify overdue remediation items and provide visibility for escalation as needed. Analyze remediation trends and recommend process improvement opportunities.

Prepare and distribute remediation status reports, operational summaries, and leadership briefings. Provide analytical insight into remediation posture and enterprise risk exposure.

Support communications with partner agencies or service customers regarding remediation timelines and responsibilities.

• Maintain documentation for remediation workflows, procedures, and tracking processes. Support vulnerability management audits, compliance reporting, and risk exception tracking. Assist with remediation lifecycle process improvement initiatives.
• Perform additional cybersecurity analysis and reporting tasks supporting agency operations.

Requirements

• A bachelor's degree in information technology systems, computer science, or a related field and experience in the information technology field to include experience in a security-focused role. Relevant experience may be substituted for the bachelor's degree on a year-for-year basis.

• Knowledge of vulnerability remediation and patch management lifecycle processes.
• Ability to analyze vulnerability and remediation data and identify trends or compliance gaps.
• Ability to develop dashboards, performance metrics, and operational reports.
• Ability to communicate remediation requirements and status updates to technical and non-technical stakeholders.
• Strong analytical, organizational, and stakeholder engagement skills.
• Ability to coordinate remediation testing activities and support established change management processes.

Applicants indicating college credit or degree(s) on the application may bring a copy of college transcript to the interview. A copy of the transcript may also be uploaded as an attachment to the application, if required by the hiring department or if desired by the applicant. Please note that some areas of the Department may require an official, certified copy of the transcript prior to hiring or within a specific timeframe required by that area, after hiring. Failure to produce an official, certified transcript may result in not being hired or termination.

Qualifications

• Experience working with vulnerability management tools or reporting platforms in an enterprise or shared services environment.
• Working knowledge of enterprise Windows environments and basic security concepts.

Additional Information

The Department of Administration is committed to providing equal employment opportunities to all applicants and does not discriminate on the basis of race, color, religion, sex (including pregnancy, childbirth, or related medical conditions including, but not limited, to lactation), national origin, age (40 or older), disability or genetic information.

Supplemental questions are considered part of your official application. Any misrepresentation will result in your disqualification from employment.

Please complete the state application to include all current and previous work history and education.

A resume will not be accepted nor reviewed to determine if an applicant has met the qualifications for the position.

The South Carolina Department of Administration offers an exceptional benefits package for full time (FTE) employees: