Location
Dublin, CA
Salary
Not specified
Type
fulltime
Posted
Today
Job Description
Our values start with our people, join a team that values you!
Bring your talents to Ross, our leading off-price retail chain with over 2,200 stores, and a strong track record of success and growth. Our focus has always been bringing our customers a constant stream of high-quality brands and on-trend merchandise at extraordinary savings. All while providing a fun and exciting treasure hunt experience.
As Part Of Our Team, You Will Experience
- Success. Our winning team pursues excellence while learning and evolving
- Career growth. We develop industry leading talent because Ross grows when our people grow
- Teamwork. We work together to solve the hard problems and find the right solution
- Our commitment to Diversity, Equality \& Inclusion, and our community. We celebrate the backgrounds, identities, and ideas of those who work and shop with us because our differences make us stronger. We strive to be a positive force in our community.
Our Corporate headquarters are in Dublin, CA, we have 3 buying offices in key markets in New York City, Los Angeles, and Boston, and 8 distribution centers nationwide. With 2025 revenues of $22\.8 billion, we are a Fortune 500 company who is committed to providing an inclusive work environment with continuous learning opportunities and development for our teams.
General Purpose
The IT Business Analyst (Vulnerability Remediation) helps protect our enterprise by validating,
prioritizing, and driving remediation of security vulnerabilities across our environment -
including Corporate HQ, stores, distribution centers, and supply chain systems. You will
partner with Infrastructure and Application teams to reduce risk at scale, improve patch
compliance, and ensure adherence to regulatory/industry frameworks (e.g., PCI-DSS, SOX).
This is a hands-on role focused on scan analysis, false-positive triage, remediation
orchestration, and metrics. Ideal candidates are data-driven, comfortable with large enterprise
environments, and proactive in turning findings into action.
Analysis includes security, system, and business impact at times. In security impact, the
candidate must have a good understanding of the security implications of a patch although not a
security SME. In system impact, the candidate must analyze and foresee the side effects of the
patch.
This position, therefore, requires soft skills, such working as a team, verbal and written
communications, understanding business issues, customer focus and listening to constructive
feedback. One of the most important qualities is to optimize existing (patch) processes. The
candidate must possess an innovative mindset.
The base salary range for this role is $84,700 - $136,150\. The base salary range is
dependent on factors including, but not limited to, experience, skills, qualifications,
relevant education, certifications, seniority, and location. The range listed is just one
component of the total compensation package for employees. Other rewards vary by
position and location.
Essential Functions
- Assess drift scan results, primarily Linux, and document and test recommended
solutions.
- Assist in developing and documenting remediation solution action plans.
- Develop and optimize pre- and post- remediation standard operation procedures to
ensure proper implementation without any outages
- Influence innovative opportunities intended to improve the patch management program
at Ross.
- Support internal and external audit and assessment evidence supporting the vulnerability
remediation program.
- Contribute to the continuous improvement of existing and development of new
operational dashboards.
- Track remediation progress against established compliance timelines and communicate
remediation compliance metrics.
Competencies
People
- Building Effective Teams
- Developing Talent
- Collaboration
Self
- Leading by Example
- Communicates Effectively
- Ensures Accountability and Execution
- Manages Conflict
Business
- Business Acumen
- Plans, Aligns and Prioritizes
- Organizational Agility
With Particular Emphasis On The Following Specific Position-related Competencies
- Builds Trust and Credibility
- Dealing with Ambiguity
- Customer Focus
- Approachability
Qualifications And Special Skills Required
- Undergraduate degree or equivalent work experience
- 3-5 years of experience in vulnerability remediation management or security operations in
a mid-to-large enterprise.
- A solid understanding of industry best practices for vulnerability remediation, specifically
processes supporting industry best practices
- Technical experience with Linux Operating Systems and Java vulnerability remediation
principles.
- Excellent understanding of Linux systems.
- Excellent reporting and communication skills with the ability to present technical findings
to varied audiences.
- Proficiency in collecting, analyzing and disseminating threat solutions
- Excellent reporting and communication skills with the ability to present technical findings
to varied audiences.
Physical Requirements/Ada
Job requires ability to work in an office environment, primarily on a computer.
Requires sitting, standing, walking, hearing, talking on the telephone, attending in-person
meetings, typing, and working with paper/files, etc.
Consistent timeliness and regular attendance.
Vision requirements: Ability to see information in print and/or electronically.
This role requires regular in-office presence, including to engage in in-person team interaction,
meetings and collaboration, and/or feedback. However, this role can perform duties effectively
using a combination of in-office and remote work.
Supervisory Responsibilities
None
Disclaimer
This job description is a summary of the primary duties and responsibilities of the job and position.
It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities.
Contents are subject to change at management's discretion.
Ross is an equal employment opportunity employer. We consider individuals for employment or
promotion according to their skills, abilities and experience. We believe that it is an essential part
of the Company's overall commitment to attract, hire and develop a strong, talented and diverse
workforce. Ross is committed to complying with all applicable laws prohibiting discrimination
based on race, color, religious creed, age, national origin, ancestry, physical, mental or
developmental disability, sex (which includes pregnancy, childbirth, breastfeeding and medical
conditions related to pregnancy, childbirth or breastfeeding), veteran status, military status, marital
or registered domestic partnership status, medical condition (including cancer or genetic
characteristics), genetic information, gender, gender identity, gender expression, sexual
orientation, as well as any other category protected by federal, state or local laws.
Looking for more opportunities?
Browse thousands of graduate jobs and entry-level positions.