AVP, Vulnerability Management Engineer

We are looking for a talented AVP, Vulnerability Management Engineer to join our Information Security team. As a key member of our team, you will play a crucial role in ensuring the security of our environment by identifying and managing security vulnerabilities. You will work closely with infrastructure, engineering, and application teams to ensure vulnerabilities are remediated and lead complex projects with minimal oversight.

Requirements

• 7+ years of practical experience in information security field within a large enterprise environment
• 5+ years of vulnerability management experience, including directly managing scanning tools (ex. Qualys, Rapid7, Tenable) and understanding types of vulnerabilities and techniques/compensating controls to mitigate associated risk
• 3+ years of managing and configuring external attack surface management platforms (ex. AssetNote, XPanse, CyCognito)
• Experience building/managing integrations between vulnerability management tools with issue tracking tools (ex.JIRA, ServiceNow)
• Experience developing custom scripts to automate processes and consolidate data from different sources
• Strong analytical, interpersonal and communication skills
• Experience leading large scale technology and process improvement initiatives
• Experience creating and managing policy, processes and procedure documents
• Experience at a financial services/technology company or in a regulated industry.
• Ability to communicate with both technical and non-technical stakeholders at all levels of the organization.
• Experience managing security configuration hardening policy scanning programs and familiarity with CIS benchmarks
• Experience developing PowerBI dashboards
• ServiceNow Vulnerability Response administrator and/or development experience

Benefits

• 401K matching
• health benefits
• employee stock options
• paid time off
• volunteer time off
• and more