Overview

Título del trabajo: Threat And Vulnerability Manager

Compañía: Otsi

Descripción de funciones: Job Description Responsible of the management and integration of processes, tools, technologies, and security services aimed at the discovery, curation, and remediation of security threats and vulnerabilities.
Leverage leading-edge technologies, and innovative approaches to position Hologic for measurable success, improving efficiency, increasing security posture, supporting aggressive growth.
Excellent engagement and communication skills with senior enterprise stakeholders, IT (Information Technology) leadership and solution delivery peers.
Strong customer-focused, team-oriented approach that balances security needs and user experience to provide best-in-class security to the organization.
Responsible for developing and executing Hologic’s strategy to manage cyber security threats and reduce vulnerabilities.
Managing the end-to-end vulnerability lifecycle Performing and reporting on vulnerability scans Engaging in stakeholder management Working in tandem with architecture and engineering teams Lifecycle management of threat and vulnerability tools Developing Threat Models Developing Risk Taxonomy Developing and maturing Objectives and Key Results for the program Developing Key Performance Indicators and Key Risk Indicators for threats and vulnerabilities to Hologic’s information assets Working with various groups to conduct ad hoc testing of remediation activities Maintaining current knowledge and understanding of threats, emerging threats, and vulnerabilities.
Building, leading, and growing the Threat and Vulnerability function Requirements Experience in building and maturing V.M programs and be versed in threat modeling, threat hunting, and red/blue/purple teaming The role is a hybrid of managerial knowledge well versed in Information Security and highly technical knowledge of threats of both hardware, software, and network Experience coaching IT and Security Engineers to strengthen the skills and value of the team.
Experience leading large portfolios of inter-related projects, achieving target outcomes and business value within budget and timeline.
Broad technology expertise, across all Threat and Vulnerability disciplines.
Experience across varying models, including distributed and multi-tiered application environments.
Experience in a variety of work environments and industries, with demonstrated ability to be effective and deliver on the defined responsibilities in these varying environments.
Able to quickly adapt techniques to the target environment and stakeholders.
Working knowledge of Secure Systems and Software Development methodologies Strong analytical skills, with demonstrated ability to assess system and technology portfolios, recommend improvement opportunities, and align stakeholders around remediation of gaps.
Grasp of current and emerging technologies and trends, with ability to rapidly assess and apply new and emerging technologies.
Excellent communication skills, both written and verbal, with ability to communicate effectively at all levels of the organization.
Demonstrated ability to build strong relationships with business and IT stakeholders, leaders, and IT engineering teams.
Ability to balance concurrent engagement in multiple complex initiatives.
Skills, Specialized Knowledge (Desired): 3-5 years in vulnerability assessments and/or penetration testing 4 years combined solid experience in one of the major V.M Scanners (Qualys, Tenable, Rapid7) Experience in Healthcare or Manufacturing environments a plus.
CISSP or CISSP-ISSMP SANS Certifications are a plus GPEN, GCWN, GWAPT, GXPN, GDAT Education: Bachelor’s degree desirable in information technology, Information Security, or relevant field.
Advanced degree may be helpful but not required.
Experience: More of 8 years of Information Security experience At least two years of experience leading teams.

Ubicación: Limón, Limón

Fecha del trabajo: Tue, 13 Aug 2024 22:00:29 GMT