1

Weekend Vulnerability Analyst Jobs in Rochester, NY

Oversee employees that are completing cyber vulnerability assessments, SPR's, OT NOW and IT NOW ... Understanding of data analytics and associated technologies * Ability to define, manage and lead ...

Manager - Cyber Operations

Rochester, NY · On-site

$128K - $160K/yr

Oversee employees that are completing cyber vulnerability assessments, SPR's, OT NOW and IT NOW ... Understanding of data analytics and associated technologies * Ability to define, manage and lead ...

Cyber Security Tutor

Rochester, NY · Remote

$18 - $40/hr

Deep knowledge of network security, cryptography, threat analysis, vulnerability assessment, security protocols, firewalls, intrusion detection systems, incident response, ethical hacking, and ...

Barilla is looking for an OT Cyber Security Sr. Analyst to join our OT Cyber Security team. The role is based in either Northbrook, IL, Ames, IA, or Avon, NY, with Northbrook being the preferred ...

Weekend Vulnerability Analyst information

What are the key skills and qualifications needed to thrive as a Weekend Vulnerability Analyst, and why are they important?

To thrive as a Weekend Vulnerability Analyst, you need strong knowledge of cybersecurity principles, vulnerability assessment methodologies, and a background in IT or computer science, often supported by certifications like CompTIA Security+ or CEH. Familiarity with tools such as Nessus, Qualys, or OpenVAS, as well as experience with SIEM systems, is typically required. Analytical thinking, attention to detail, and effective communication are standout soft skills for this role. These skills and qualities are crucial for accurately identifying, reporting, and helping to remediate security vulnerabilities, especially during off-hours when quick, independent decision-making is essential.

What are the typical challenges faced by a Weekend Vulnerability Analyst, and how can they be addressed?

Weekend Vulnerability Analysts often face the challenge of limited real-time collaboration with other team members and stakeholders, as most staff work standard weekday hours. This can make incident escalation and remediation coordination more complex. To address these challenges, strong documentation skills, clear communication protocols, and proactive planning are essential. Additionally, weekend analysts often have more autonomy, which provides opportunities to take initiative and demonstrate problem-solving abilities, potentially leading to faster career growth.

What is a Weekend Vulnerability Analyst?

A Weekend Vulnerability Analyst is a cybersecurity professional who specializes in identifying, assessing, and reporting security vulnerabilities within an organization's systems and networks, specifically during weekend hours. Their primary responsibilities include conducting vulnerability scans, monitoring for new threats, analyzing security alerts, and collaborating with IT teams to remediate discovered weaknesses. These analysts play a crucial role in ensuring continuous protection against cyber threats, even outside the standard workweek. Their work helps organizations maintain a strong security posture and meet compliance requirements.

What is the difference between Weekend Vulnerability Analyst vs Cybersecurity Technician?

AspectWeekend Vulnerability AnalystCybersecurity Technician
CertificationsCompTIA Security+, CEH (Certified Ethical Hacker)CompTIA Security+, Network+
Work EnvironmentPart-time, weekend-focused security assessmentsFull-time, technical support and security maintenance
Industry UsageIT security firms, corporate security teamsIT departments, managed service providers
Job FocusIdentifying vulnerabilities, security testingImplementing security measures, troubleshooting

The Weekend Vulnerability Analyst primarily focuses on identifying security weaknesses during weekends, often performing vulnerability scans and assessments. In contrast, a Cybersecurity Technician handles broader security tasks, including implementing security protocols and troubleshooting issues. While both roles require security certifications and work within the IT security industry, their responsibilities and work schedules differ significantly.

What are the most commonly searched types of Vulnerability Analyst jobs in Rochester, NY? The most popular types of Vulnerability Analyst jobs in Rochester, NY are:
What are popular job titles related to Weekend Vulnerability Analyst jobs in Rochester, NY? For Weekend Vulnerability Analyst jobs in Rochester, NY, the most frequently searched job titles are:
What job categories do people searching Weekend Vulnerability Analyst jobs in Rochester, NY look for? The top searched job categories for Weekend Vulnerability Analyst jobs in Rochester, NY are:
What cities near Rochester, NY are hiring for Weekend Vulnerability Analyst jobs? Cities near Rochester, NY with the most Weekend Vulnerability Analyst job openings:
Senior Information Security Analyst

Senior Information Security Analyst

CooperVision

Victor, NY • On-site

Full-time

Posted 10 days ago


CooperVision rating

7.2

Company rating: 7.2 out of 10

Based on 12 frontline employees who took The Breakroom Quiz


Job description

Job Summary:
CooperVision is a leading global manufacturer of contact lenses dedicated to improving vision. The Senior Information Security Analyst provides advanced security expertise across the enterprise, partnering with various teams to define and maintain security architecture, streamline remediation of vulnerabilities, and improve Security Controls effectiveness.
Responsibilities:
• Provide leadership and direction for the integration of security culture and design within business and IT strategy; work with the Engineering teams to ensure that security considerations are included in systems architecture and help to identify, evaluate, and select security solutions to meet information security/compliance needs.
• Mentor and coach junior team members to develop well-rounded information security skill sets; promote a strong security culture and awareness across the organization.
• Work with compliance teams to ensure solutions meet security policies and procedures.
• Support compliance with relevant regulations and frameworks (e.g., SOX, HIPAA, PCI, GDPR, GLBA) and privacy laws; prepare for and participate in audits and examinations.
• Administer and tune security tools (e.g., SIEM, NAC, firewalls, IDS/IPS, secure email gateway) to ensure effective monitoring and detection while enabling business operations.
• Partner with Security Engineers to ensure security-by-design in systems architecture and delivery of secure solutions; participate in change/project management to validate secure designs and implementations.
• Define and maintain enterprise security documents (policies, standards, baselines, guidelines, and procedures) and provide detailed hardening guidance to technical teams.
• Prioritize vulnerability assessment output based on exploitability, impact, and likelihood; coordinate remediation across infrastructure, endpoints, applications, and cloud services.
• Support compliance with relevant regulations and frameworks (e.g., SOX, HIPAA, PCI, GDPR, GLBA) and privacy laws; prepare for and participate in audits and examinations.
• Design, scope, and lead deep technical assessments on internal and external systems.
• Define incident response playbooks for IT and Information Security personnel to follow when responding to common issues (e.g., malware infection, phishing, etc.)
• Act as a Subject Matter Expert within all Information Security disciplines.
• Coordinate and help implement significant security projects
• Contribute to Business Continuity and Disaster Recovery planning and exercises in coordination with IT and continuity team
• Influence and communicate business risk and recommended mitigations to technical and non-technical audiences; document clearly for management and stakeholders.
• Handle sensitive/confidential information, investigations, and incidents in a professional and confidential manner.
• Perform other duties as assigned.
Qualifications:
Required:
• Expert knowledge of security frameworks and concepts such as NIST 800-53, ISO 27001, CIS Critical Controls, the Cyber Kill Chain, MITRE ATT&CK, and OWASP.
• Have in-depth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls.
• Deep understanding of enterprise infrastructure and security technologies including network switches/routers, firewalls/VPN, DLP, anti-malware, IDS/IPS, SIEM, SMTP/email security, Active Directory/Group Policy, DNS, DHCP, VLANs, and content filtering.
• Experience with traditional and modern security controls such as SIEM, IDS/IPS, PKI, IAM, antivirus/firewalls, EDR, threat intelligence, security automation/orchestration, deception, and application controls.
• Ability to conduct vulnerability scanning and penetration testing; incident response and digital forensics.
• Experience developing policies, procedures, standards, and guidelines.
• Strong analytical, strategic, and tactical thinking; ability to communicate business risk effectively and drive nuanced solutions without impeding innovation.
• Understanding of common cloud platforms and how to secure them; experience with AWS and/or Azure is a plus.
• Ability to interact with Cooper personnel and build strong relationships at all levels, and across all business units and organizations, and to understand business imperatives.
• Strong leadership abilities, with the capability to develop and guide information security team members and IT operations personnel, and to work with minimal supervision.
• Excellent verbal, written and interpersonal communication skills, including the ability to communicate effectively with the IT organization, project and application development teams, management, and business personnel.
• 5-10 years of professional IT experience; 3-6 years specifically in Information Security, including work with geographically dispersed teams.
• Experience supporting audits and meeting regulatory requirements (SOX, HIPAA, PCI, GDPR, GLBA).
• Bachelor’s degree in computer science, information assurance/cybersecurity, MIS, or equivalent experience.
Preferred:
• Professional certifications such as GIAC (e.g., GSEC/GCIA), CISSP, CISM, Cisco Security or similar are preferred.
Company:
CooperVision is one of the world’s leading manufacturers of soft contact lenses and related products and services. It is a sub-organization of The Cooper Companies. Founded in 1980, the company is headquartered in Fairport, USA, with a team of 5001-10000 employees. The company is currently Late Stage.

What CooperVision employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom