University of Chicago Medicine (UCM) is a premier academic medical center committed to advancing healthcare through innovation, research, and outstanding patient care. Our cybersecurity team is essential in safeguarding UCM’s digital environment by proactively identifying and addressing security risks. We are seeking a mid-level professional to join our Vulnerability Management & Offensive Security (VMOS) team, where you will gain hands-on experience in vulnerability management, penetration testing, and offensive security operations within a supportive and collaborative environment.
Â
In this role, you will assist with managing internal and external attack surfaces, running vulnerability scans, triaging scan results, and working alongside asset and application owners to help remediate security issues. You will also support penetration testing activities and participate in red and purple team exercises to develop your offensive security skills. This position offers a strong foundation for a career in cybersecurity within a complex healthcare setting.
Â
Essential Job Functions:
Assist in executing vulnerability scans and monitoring scan results.
Support triaging and prioritizing vulnerabilities for remediation.
Identify asset and application owners and coordinate patching efforts.
Assess and communicate vulnerability risk.
Participate in vulnerability validation and testing.
Contribute to red team and purple team exercises.
Document findings and assist in preparing reports.
Maintain scanning application configuration.
Collaborate with team members and other departments to improve security.
Stay informed about basic cybersecurity threats and vulnerabilities.
Manage and maintain exceptions for scanning and vulnerability patching.
Â
Required Qualifications:
Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent internship/work experience.
3 to 5 years of experience in vulnerability management.
Well-rounded understanding of vulnerability management concepts.
Familiarity with network protocols, operating systems, and web technologies.
Strong analytical and communication skills.
Experience with vulnerability management and scanning tools.
Â
Preferred Qualifications
Relevant security related certifications (e.g., Security+, CEH)
Experience with Rapid7
Eagerness to learn and grow in offensive security
Â
Position Details
- Job Type/FTE: Full Time (1.0 FTE)
- Shift: Day
- Location: Remote
- Unit/Department: Information SecurityÂ
- CBA Code: Non-Union
Â
We’ve been at the forefront of medicine since 1899. We provide superior healthcare with compassion, always mindful that each patient is a person, an individual. To accomplish this, we need employees with passion, talent and commitment… with patients and with each other. We’re in this together: working to advance medical innovation, serve the health needs of the community, and move our collective knowledge forward. If you’d like to add enriching human life to your profile, UChicago Medicine is for you. Here at the forefront, we’re doing work that really matters. Join us. Bring your passion.
Â
UChicago Medicine is growing; discover how you can be a part of this pursuit of excellence at:Â UChicago Medicine Career Opportunities
Â
UChicago Medicine is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, ethnicity, ancestry, sex, sexual orientation, gender identity, marital status, civil union status, parental status, religion, national origin, age, disability, veteran status and other legally protected characteristics.
Â
As a condition of employment, all employees are required to complete a pre-employment physical, background check, drug screening, and comply with the flu vaccination requirements prior to hire. Medical and religious exemptions will be considered for flu vaccination consistent with applicable law.
Â
Compensation & Benefits Overview
Â
UChicago Medicine is committed to transparency in compensation and benefits. The pay range provided reflects the anticipated wage or salary reasonably expected to be offered for the position.
Â
The pay range is based on a full-time equivalent (1.0 FTE) and is reflective of current market data, reviewed on an annual basis. Compensation offered at the time of hire will vary based on candidate qualifications and experience and organizational considerations, such as internal equity. Pay ranges for employees subject to Collective Bargaining Agreements are negotiated by the medical center and their respective union.
Â
Review the full complement of benefit options for eligible roles at Benefits - UChicago Medicine.
Learn more about this Employer on their Career Site
