Vulnerability Manager
Security engineering
Security operations.

My client, a global insurance company, is looking to hire a vulnerability manager for its security remediation team.

Successful candidates will:

Replace and extend current manual processes through automation or other appropriate techniques

Manage finding and issue tracking systems and track key volumetrics and backlog

Operate data quality controls and workflows

Operate vulnerability discovery and risk-based prioritization processes

Lead event management and treatment of emergent vulnerabilities

Operate and maintain/update vulnerability management governance processes

Engage with peers in IT architecture and operations, security architecture, red team, effectiveness testing team, hunt team, CTI team, SOC, and other teams to remediate emergent vulnerability and to address other key tactical concerns

Collaborate with data integration/analytics team to improve the function of, and user understanding and effective utilization of, the data analytics/reporting and ticketing platforms

Apply industry experience of IT risk management and vulnerability management practices to normalize and improve the Group's process maturity

Successful candidates will likely have:
- Experience engaging with peers in IT architecture and operations, security architecture, red team, CTI team, SOC,
- Demonstrated success leveraging scripting and automation skills to improve IT processes and workflows a plus
- Experience in one or more of Linux, Windows, Active Directory, Azure Directory, O365
- Familiarity with one or more of Splunk, Crowdstrike, Qualys, Nessus/Tenable, MS SQL, Oracle DBMS is a plus
- Familiarity with data integration systems and concepts is a plus
Incident handling/response, malware analysis, adversarial emulation, and offensive skills are a plus
- OSCP, OSWE or OSCE certifications or equivalent demonstrated skills are a plus

Please apply now if you would like to learn more