Vulnerability Management Director/Manager

Company: Berkley

Location: Wilmington, DE 19809

Company Details:[

Berkley Technology Services (BTS) is a dynamic company committed to providing world class IT services. We offer a unique culture, enabling our team members to be on the cutting edge of technology while delivering high quality solutions. We are looking for outstanding individuals who will bring unique perspectives, insight and innovation to our teams. BTS, a member company of W. R. Berkley Corporation, has facilities located in Des Moines, Iowa and Wilmington, Delaware. Our functions include working with various third parties to develop, integrate, and support insurance systems of WRBC’s operating units. BTS strives to provide these functions in a holistic manner including helpdesk support, system connectivity, and operational support. Additional responsibilities include coordinating communications regarding best practices in the use of our supported systems and researching new technology. At BTS, there are opportunities associated with being a part of an established and empowering corporation while maintaining a positive personal working environment. Additionally, we provide a competitive compensation and benefits package including a casual dress code. BTS is constantly growing and expanding to meet the changing demands of one of the most successful insurance organizations in the world. Visit us at berkley-bts.com to learn more information.

]Responsibilities:

W.R. Berkley is seeking a Vulnerability Management Director/Manager (DOE) to set the strategic direction for managing risk, reducing application and infrastructure vulnerabilities across the data center and cloud-based environments. The Information Security Team of W. R. Berkley designs, engineers and operates technical solutions that when coupled with documented processes and capable people, delivers enterprise-wide security services inside of service level objectives. People, technology, process, and innovation are at the heart of our organization.

As Vulnerability Management Director/Manager, you will drive long-term operational security thought leadership throughout W.R. Berkley and its internal and external partners. You will engage with your direct reports of application and infrastructure security professionals, BTS team leads and BTS application owners to define, document and operate vulnerability reduction services that identify security gaps, prescribe fix actions and thereby elevate our enterprise security posture. This position will require personnel and technical leadership, communication, collaboration and influencing skills.

Qualifications:

Essential Functions

You will deliver world-class vulnerability reduction services for W.R. Berkley across multiple operating units and geographic locations
You will build, lead and direct application penetration testing activities to identify and reduce vulnerabilities and elevate cybersecurity posture across the company
You will select, deploy, and optimize vulnerability management tools and products to include scanners, SAST, DAST, etc, and integrate them with the enterprise risk management and SEIM tools.

You will formulate and maintain the vulnerability reduction roadmap in close coordination with product strategy and security engineering

You will understand the common types of cyber-attacks and countermeasures in the financial service industry
You will evangelize and be an internal thought leader for scalable and effective remediation at all layers of the organization, infrastructure and application stack by applying appropriate risk-based prioritization, simplifying requests and collaborating with development teams
You will recruit, coach, train, lead, and inspire a team that strives for continual improvement
You will disseminate standards, policies, and develop business metrics for measuring and monitoring vulnerability remediation on a continuous basis

Required Experience

You have built or transformed highly effective vulnerability management and application security programs within a global enterprise
You have senior level experience with Vulnerability management scanning tools such as Tenable, Nexpose, Qualys, or Tanium
You have experience with the integration of vulnerability data into Splunk, ServiceNow, Archer, and JIRA for consumption and decision support by various teams
You have extensive experience delivering policy, standards, KPIs, executive metrics and reporting dashboards including.
You have demonstrated experience developing and leading a technically advanced security team in a global environment
You have a deep understanding of web application testing and the OWASP Top 10
You have advanced knowledge and of common communications protocols and attack techniques and embrace an ongoing pursuit of following new developments in this dynamic space and sharing them with others
You possess broad and deep understanding of technical security concepts and familiarity with related technologies and infrastructure, as well as a solid conceptual knowledge of enterprise IT system operations
You are fluent in common cybersecurity domains such as data protection, access control, encryption, identify management, security operations, application security, penetration testing, endpoint security, vulnerability management, threat intelligence, risk assessments
You easily collaborate across a large organization utilizing strong written and verbal communication skills

Minimum Qualifcations

You have earned a BA/BS in Engineering, Computer Science, Information Security, or Information Systems with a minimum of 10 years of computer and network security experience
You hold a CISSP, CISM, CISA, Security+, CEH, GCIA, GCIH or related certification
2+ years of experience leading a vulnerability management team, and operating/configuring/optimizing vulnerability management tools.
10+ years of progressive experience managing initiatives in technology environment
6+ years of leadership experience with executive level presence

Share this:

Related