SonicJobs Logo
Left arrow iconBack to search

Vulnerability Management Engineer

UChicago Medicine
Posted 4 days ago, valid for 19 days
Location

Darien, IL 60561, US

Salary

$118,300 - $138,000 per year

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • University of Chicago Medicine is seeking a mid-level professional to join their Vulnerability Management & Offensive Security team.
  • The role requires 3 to 5 years of experience in vulnerability management and offers a supportive environment for skill development.
  • Key responsibilities include managing attack surfaces, running vulnerability scans, and supporting penetration testing activities.
  • The position is full-time, remote, and offers a competitive salary based on qualifications and experience.
  • Candidates should have a Bachelor's degree in a related field or equivalent experience, along with strong analytical and communication skills.

University of Chicago Medicine (UCM) is a premier academic medical center committed to advancing healthcare through innovation, research, and outstanding patient care. Our cybersecurity team is essential in safeguarding UCM’s digital environment by proactively identifying and addressing security risks. We are seeking a mid-level professional to join our Vulnerability Management & Offensive Security (VMOS) team, where you will gain hands-on experience in vulnerability management, penetration testing, and offensive security operations within a supportive and collaborative environment.

 

In this role, you will assist with managing internal and external attack surfaces, running vulnerability scans, triaging scan results, and working alongside asset and application owners to help remediate security issues. You will also support penetration testing activities and participate in red and purple team exercises to develop your offensive security skills. This position offers a strong foundation for a career in cybersecurity within a complex healthcare setting.

 

Essential Job Functions:

  • Assist in executing vulnerability scans and monitoring scan results.

  • Support triaging and prioritizing vulnerabilities for remediation.

  • Identify asset and application owners and coordinate patching efforts.

  • Assess and communicate vulnerability risk.

  • Participate in vulnerability validation and testing.

  • Contribute to red team and purple team exercises.

  • Document findings and assist in preparing reports.

  • Maintain scanning application configuration.

  • Collaborate with team members and other departments to improve security.

  • Stay informed about basic cybersecurity threats and vulnerabilities.

  • Manage and maintain exceptions for scanning and vulnerability patching.

 

Required Qualifications:

  • Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent internship/work experience.

  • 3 to 5 years of experience in vulnerability management.

  • Well-rounded understanding of vulnerability management concepts.

  • Familiarity with network protocols, operating systems, and web technologies.

  • Strong analytical and communication skills.

  • Experience with vulnerability management and scanning tools.

 

Preferred Qualifications

  • Relevant security related certifications (e.g., Security+, CEH)

  • Experience with Rapid7

  • Eagerness to learn and grow in offensive security

     

Position Details

  • Job Type/FTE: Full Time (1.0 FTE)
  • Shift: Day
  • Location: Remote
  • Unit/Department: Information Security 
  • CBA Code: Non-Union

 


We’ve been at the forefront of medicine since 1899. We provide superior healthcare with compassion, always mindful that each patient is a person, an individual. To accomplish this, we need employees with passion, talent and commitment… with patients and with each other. We’re in this together: working to advance medical innovation, serve the health needs of the community, and move our collective knowledge forward. If you’d like to add enriching human life to your profile, UChicago Medicine is for you. Here at the forefront, we’re doing work that really matters. Join us. Bring your passion.

 

UChicago Medicine is growing; discover how you can be a part of this pursuit of excellence at: UChicago Medicine Career Opportunities

 

UChicago Medicine is an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, ethnicity, ancestry, sex, sexual orientation, gender identity, marital status, civil union status, parental status, religion, national origin, age, disability, veteran status and other legally protected characteristics.

 

As a condition of employment, all employees are required to complete a pre-employment physical, background check, drug screening, and comply with the flu vaccination requirements prior to hire. Medical and religious exemptions will be considered for flu vaccination consistent with applicable law.

 

Compensation & Benefits Overview

 

UChicago Medicine is committed to transparency in compensation and benefits.  The pay range provided reflects the anticipated wage or salary reasonably expected to be offered for the position.

 

The pay range is based on a full-time equivalent (1.0 FTE) and is reflective of current market data, reviewed on an annual basis. Compensation offered at the time of hire will vary based on candidate qualifications and experience and organizational considerations, such as internal equity. Pay ranges for employees subject to Collective Bargaining Agreements are negotiated by the medical center and their respective union.

 

Review the full complement of benefit options for eligible roles at Benefits - UChicago Medicine.




Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.