GE Staff Cyber Security Researcher in Schenectady, New York
Power Information Technology
GE is the world’s Digital Industrial Company, transforming industry with software-defined machines and solutions that are connected, responsive and predictive. Through our people, leadership development, services, technology and scale, GE delivers better outcomes for global customers by speaking the language of industry.
GE Power is a world leader in power generation with deep domain expertise that helps customers deliver electricity from a wide spectrum of fuel sources. We are transforming the electricity industry with the digital power plant, the world’s largest & most efficient gas turbine, full balance of plant solutions and our data-leveraging software. Our innovative technologies and digital offerings help make power and water more affordable, reliable, accessible and sustainable.
GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is anEqual Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Posted Position Title
Staff Cyber Security Researcher
Location(s) Where Opening Is Available United States
U.S. State, China or Canada Provinces
Schenectady, New Orleans, Van Buren, Cincinnati, Bangalore
Work within the GE Power Vulnerability Management team to review and validate identified vulnerabilities, identify required remediation and work with the P&Ls and COE teams to prioritize and drive remediation of vulnerabilities. Maintain and improve data visualization and analysis tools to help drive effective remediation. Monitor vendor and third party releases for newly identified vulnerabilities that could impact GE Power and review, validate and prioritize any required remediation.
As the Staff Cyber Security Researcher, you will:
Coordinate with GE Digital EVM team to ensure adequate vulnerability management scanning takes place for GE Power Assets
Communicate results of vulnerability management scanning to P&Ls, COEs, and leadership
Work with P&Ls, COEs, and other teams as necessary to ensure remediation of identified vulnerabilities within the prescribed timelines
Utilize vulnerability management tools to run ad-hoc scans and reports
Analyze actions related to vulnerability remediation and propose actions to relevant parties
Execute projects focused on resolving root causes that may contribute to increasing vulnerabilities on the network
Develop and maintain reports, queries, visualizations, etc. related to vulnerability management reporting solutions. Identifies opportunities for improvements to reporting and implement as needed
Use data analysis skills and techniques to identify root causes, trends, opportunities for improvement, etc. related to vulnerability management
Bachelor degree in Computer Science, Information Systems, or related field
Minimum 3 years’ experience in system, security, or network administration
Additional Eligibility Qualifications
GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a background investigation and drug screen.
Understanding the concept of infrastructure vulnerabilities, and basic principles of IT Security and IT networking
Strong collaboration skills/experience working in a team environment
Must be a team player
Self-driven and goal-oriented
Excellent communications skills
Analytical and problem solving skills
Experience with patch management processes and tools (e.g., Shavlik, BigFix, HPSA, etc.)
Experience with vulnerability scanning tools (e.g., Qualys, Nessus, etc.)
Experience with data analysis and data visualization processes and tools
Experience in network and systems administration, including: Windows, *nix, Active Directory, Cisco, and other major vendor systems
Experience with administration of one or more of the following: major database management systems (e.g., Oracle, SQL Server), major middleware/web server products (e.g., Tomcat, Websphere, Jboss, IIS, etc.)
Basic SQL experience