Threat Vulnerability AI Analyst
Company Name ARS-Rescue Rooter
Overview
American Residential Services is the largest provider of residential services in the U.S., employing more than 7,000 professionals across the country. ARS has been serving its customers with HVAC, Plumbing, and Electrical solutions for more than 50 years since its establishment in 1975. Check out what we offer: Access to insurance available at 31 days of employment Low-cost Medical Insurance options, starting at $5 per week Dental and Vision Insurance options Health Savings Account or Flexible Spending Account 401(k) with company match HSA and Flexible Spending Account Paid Time Off & Holiday Pay Company paid life insurance Learn more by visiting www.myarsrewards.com/ A hybrid role split roughly 50/50: half is threat and vulnerability management across ARS environments; half is building AI-driven automations (Claude and/or ChatGPT) to eliminate manual toil across the entire Information Security department, at the direction of the Senior Director.
Responsibilities
Primary Responsibilities Threat & Vulnerability Management (~50%) Run external/internal vulnerability and application/software scans; analyze, deduplicate, and publish prioritized remediation backlogs. Correlate findings with threat intelligence, KEV/exploit data, and asset criticality; track SLAs and risk reduction. Coordinate fixes with Infra/Identity/App teams; validate remediation, capture evidence, and report on closure. Support formal penetration tests and external posture monitoring (e.g., BitSight); manage findings through closure. AI Automation for the InfoSec Department (~50%) Design, build, and operate AI-driven workflows (Claude and/or ChatGPT) that automate recurring work across security operations, identity, GRC, and reporting — prioritized by the Sr. Director. Translate leadership priorities into production automations: report generation, evidence collection, alert summarization, audit prep, vuln triage drafting, ticket workflow assistance. Maintain human-in-the-loop governance and audit trails for all AI outputs; document prompts, approvals, and edge cases. Continuously benchmark AI tooling effectiveness; report time saved, accuracy, and adoption across the department. This position will participate in an on-call rotation. Key Outcomes & KPIs Critical vulnerabilities remediated within SLA; pen test findings closed; measurable exposure reduction. Documented hours saved from AI automations; production AI workflows in active use; tracked accuracy and adoption metrics.
Qualifications
Required Qualifications 3+ years in vulnerability management, threat intel, or security operations; experience with enterprise scanners and CVSS/KEV workflows. AI Fluency Hands-on experience using Claude and/or ChatGPT to automate security or IT work; effective prompt design, structured outputs, and HITL controls. Scripting/automation skills; comfort with REST APIs, JSON, and integration patterns across SaaS tools. Strong judgment on when human review is required vs. when automation is safe to run; clear documentation and stakeholder coordination skills. Tools & Technologies Vulnerability scanners (e.g., CrowdStrike), threat intel feeds, ticketing/RACI trackers, reporting dashboards. Claude, ChatGPT, prompt frameworks; Python/scripting; REST APIs across CrowdStrike, Zscaler, Entra, Freshservice, and SIEM/XDR. Collaboration & Decision Rights Drives vulnerability prioritization and coordinates remediation with Infra/Identity/App owners; informs GRC on risk and compliance impacts. Receives automation priorities from the Sr. Director; partners with all team members to identify automation opportunities and ship workflows within governance guidelines. ARS-Rescue Rooter is an Equal Opportunity Employer AA/EOE/M/F/V/D. In compliance with the Americans with Disabilities Act, ARS-Rescue Rooter may provide reasonable accommodations to qualified individuals with disabilities and encourages both prospective and current employees to discuss potential accommodations with the employer.