Sr. Cyber Vulnerability Threat Management Engineer
Start a Rewarding Career with Alliant
What will your day look like?
You will work with both IT and business partners to provide guidance on vulnerability management. The incumbent is responsible for maintaining and administering vulnerability management tools and orchestrating company-wide vulnerability scans, their management, and reporting. This continued effort will be paramount to the business objectives and needs of Alliant, our members, and product teams. Work requires a broad background in security operations, and a key focus on vulnerability management.
Resources to do the job include a strong technical background and understanding risk, mitigation and technical controls. In addition, strong written and oral communication skills, as well as the ability to communicate detailed, technical information in a manner comprehensible by individuals at varying degrees of experience and skill level. Required capabilities includes the ability to lead vulnerability management meetings with the Information Technology patch team. Based on the results of the vulnerability scans the incumbent will be able to help drive patching efforts, as well as validation. Responsibilities include creation of vulnerability metrics, and reports. This role is a key factor of success within the security operations center (SOC), and Information Security as a whole. General direction is received from the Senior Manager, SOC.
Responsibilities
Do you see yourself doing this?
- Perform vulnerability management scans across all of Alliant Credit Union's infrastructure, and report findings to the appropriate team member(s) and executive management.
- Assist internal teams with prioritizing the risk of new vulnerabilities according to the specifics of the environment's risk level, mitigating factors, and assessment of the impacts of internal and external threats.
- Be the advocate for Alliant Credit Union's vulnerability management and continuous monitoring program including recommending appropriate measures to both manage and remediate vulnerabilities in the goal of reducing potential impact and broadening security awareness.
- Host meetings with Information Technology subject matter experts to assist and guide patching efforts
- Define metrics from the vulnerability scans and provide the results to senior leadership .
- Respond to security incidents as directed by the SOC Manager.
- Engage with outside vulnerability scanning vendors and pen-test companies.
- Work with internal teams to automate security scans, analysis, validation and remediation.
Adhere to and ensure compliance of all business transactions with policy and process of the Bank Secrecy Act. Ensure compliance with all applicable state and federal laws, company procedures, and policies. Maintain integrity and ethics in all actions and conversations with or regarding credit union members and their accounts; complies with Privacy Act directives.
Qualifications
What makes you a great fit?
You'll be a great fit if you have:
- 5+ years' information security monitoring and response or related experience.
- CISSP; CISM and/or SANS certification a plus.
- Highly knowledgeable of a multitude of Operating Systems (OS) and how the OS may be impacted by implementing a patch(es).
- Ability to effectively communicate business risk from cybersecurity issues or instances.
- Outstanding written and oral communication skills and ability to communicate effectively across all levels.
- Experience driving measurable improvement in monitoring and response capabilities at scale.
- Experience managing vulnerability management solutions.
- Demonstrates strong written and oral communication skills
- Understands service design and delivery concepts
- Demonstrates solid organizational skills and the ability to multi-task, prioritize workload.
- Demonstrates excellent judgment and the ability to make quick decisions and think outside the box when working with complex situations
- Demonstrates a high level of flexibility
- Possesses strong business acumen
- Desire to continually learn and improve approaches and methodologies
When you're happy, we're happy!
As a thank you for joining our team, you'll benefit from:
- Competitive medical, dental, and free vision benefits
- Competitive compensation plan
- Contributions towards gym memberships
- Generous PTO and banking holidays off
Still not convinced?
For more details you can also visit our Glassdoor and LinkedIn profiles.