SENIOR MANAGER, VULNERABILITY MANAGEMENT
Descripción de la oferta de empleo
We're a team that dares to look at the world's challenges and see impactful possibilities.
We believe in a better future when we uplift others and enable our people to thrive at work and at home.
We boldly go.
What’s in it for you.
Be a part of our mission! As a world leader in creating comfortable, sustainable, and efficient environments, it’s our responsibility to put the planet first.
For us at Trane Technologies, sustainability is not just how we do business—it is our business.
Do you dare to look at the world's challenges and see impactful possibilities? Do you want to contribute to making a better future? If the answer is yes, we invite you to consider joining us in boldly challenging what’s possible for a sustainable world.
As part of the Digital Risk Security Operations team, the Senior Manager, Vulnerability Management will play an integral role in overseeing and managing our vulnerability management, application security, and external attack surface programs, as well as providing thought leadership on securing the company against current and emerging threats within our attack surface.
The ideal candidate for this role is able to provide leadership and mentoring to the team while also being able to direct triage and response to critical vulnerabilities and oversee the strategic direction of the program.
They also have both technical expertise and experience, as well as communication and leadership skills to influence and seamlessly collaborate across multiple stakeholder groups.
This role reports to the Director of Security Operations.
Thrive at work and at home.
Benefits kick in on DAY ONE for you and your family, including health insurance, parental leave, fertility benefits and adoption assistance.
Significant opportunities for you in our wellness program such as fitness reimbursement, HSA contributions and back-up care for aging parents and children.
K match, additional 2% core contribution = 8% overall match Vacation, plus site paid holidays and volunteer days.
Educational and training opportunities through company programs along with tuition advancement, tuition reimbursement and tuition assistance programs.
Learn more about our benefits here ! Where is the work.
This is a Remote position.
Work will be performed within Eastern Time Zone (EST) What you will do.
Oversee, mature, and provide strategic direction for the vulnerability management program.
Direct and/or perform on-going vulnerability assessments, penetration tests, and application and network security scans.
Communicate vulnerability results in a manner understood by technical and non-technical business units.
based on risk tolerance and threat to the business, and gain support through influential messaging.
Drive remediation of vulnerabilities, while collaborating with and assisting system owners with prioritization and providing guidance on adequate remediation/risk reduction actions.
Work closely with developers on remediation of application vulnerabilities.
Track and report on critical vulnerability status and impact, including triage, remediation, documentation, and escalation.
Maintain and regularly update documentation of the company’s external attack surface.
Monitor the company’s attack surface and external threat intelligence for applicable critical/zero day vulnerabilities, and triage through process as appropriate.
Serve as a subject matter expert on emerging threats and vulnerabilities.
Maintain governance over documentation, including management and updates of relevant policies, procedures, standards, and similar, making updates to stay aligned with evolving requirements and threats.
Report metrics and scorecards to measure effectiveness and efficiency of vulnerability management program.
Mentor, coach, and develop key talent within the team.
Assist with management of departmental budget and vendor relationships, including conducting quarterly business reviews, capturing metrics, and reporting on KPIs to drive program improvements.
Serve as a key cybersecurity SME to advise other IT and cybersecurity team members; as well as our third parties, key partners, and acquired entities.
Work closely with the Director, Security Operations, on strategic direction and continuous improvement of the function, including capability and maturity assessments and long-range planning, as well as evaluation of current and future-state toolsets and partnerships.
What you will bring.
Bachelor’s degree in a related field and/or a minimum of 7-10 years of equivalent experience in cybersecurity At least 3 years in vulnerability management, penetration testing, or other related expertise.
Solid technical understanding of cybersecurity concepts, frameworks, standards, guidelines, and principles.
Ability to handle time-sensitive situations with a calm and serious attitude while maintaining an appropriate sense of urgency.
Ability to keep abreast of current vulnerabilities and communicate impact, assist with prioritization, and drive appropriate remediation actions to stakeholders.
Ability to communicate and present at various levels of technical detail depending on audience, ranging from cybersecurity deep dives to non-technical stakeholders.
Effective project management and organizational skills, including managing multiple, concurrent tasks and meeting deadlines.
Excellent interpersonal skills and ability to create collaborative relationships with colleagues across various groups and levels, and influence without authority.
Demonstrated leadership skills with ability to communicate effectively and work independently, both as part of and leading a team.
Strong preference for candidates have at least one of the following.
CISSP, SANS, CISA, CISM, or equivalent/similar cybersecurity certifications.
Travel.
5-10%.
Compensation.
Base Salary.
$ Additional Compensation.
Total compensation for this role also will include an incentive plan.
Disclaimer.
This "range" could be a result of seniority, merit, geographic location where the work is performed, education, experience, travel requirements for the job, or because of a system the employer uses to measure earnings by quantity or quality of production (so, for example, positions that may not have traditional salary ranges).
We offer competitive compensation and comprehensive benefits and programs.
We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.
#LI-Remote
Detalles de la oferta
- Sin especificar
- En toda España
- Sin especificar - Sin especificar
- 15/10/2024
- 13/01/2025
Use their initiative to drive innovation and identify potential opportunities and risks within the accounts, contributing to the commercial management strategy achievement... join our growing team as a key account manager in the gbs team, you will focus on growing and developing existing clients, as......
Proficiency in using customer relationship management (crm) tools and other relevant software... demonstrated expertise in the igaming industry, with a strong emphasis on vip player management... flexibility in terms of working hours, as vip player management may occasionally require evening and weekend......
Active participation in management meetings is essential to discuss the status of clients and strategize accordingly... requisitos del puesto completion of a master’s degree/mba or an equivalent qualification is required, coupled with practical work experience, preferably in hr tech, within roles such......
• content management and creation for opentop social networks, opentop web site, press releases, etc, acting as community and communications manager of opentop... • additional benefits and bonuses... • 2-year experience in the above mentioned activities or related functions... • support to the open innovation......
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - car home / asistencia domiciliaria - turnos de día y de noche - centro de atención continua y domiciliaria - cornwall reino unido reach......
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - asistencia domiciliaria / asistencia domiciliaria - turnos de día y noche - centro de atención continua y domiciliaria - cornwall reino......
Involve rh cuenta con una posición como community manager para crear y mantener una comunidad online activa y comprometida, gestionando la presencia de la marca en redes sociales y generando interacción con los seguidores... habilidades: hootsuite creación de contenido atención al cliente online estrategias......
Diseñador/a gráfico senior ui/ux, con experiencia demostrable para integrarse de forma inmediata en nuestro gran equipo de desarrolladores, realizando tareas de diseño ui/ux/ixd, animaciones y branding para proyectos digitales tecnológicos innovadores... persona comprometida, con actitud positiva y proactiva......
Técnicos senior de radiología - reino unido - unidad de salud móvil de imágenes reach hr es una empresa especializada en la contratación de profesionales sanitarios... buscamos técnicos en radiología para trabajar en el departamento de imagen en el contexto de la unidad móvil de salud, concretamente......
Descripción:empresa española de terapias alternativas y astrologia precisa incorporar una community manager para su proyecto en madrid... requisitos del puesto promoción de la compañía en la web/conocimientos de redes sociales... desarrollo profesional en una empresa dinámica y consolidada con 20 años......