Duties

Assist leadership in expanding the current Vulnerability Management program
Integrate threat modeling practices into the vulnerability management practice
Implement processes and manage tools used to identify vulnerabilities and track their remediation within the GM environment
Act as a coach and mentor to team members, sharing knowledge associated with tools and practices utilized for vulnerability assessments
Proven ability to communicate technical issues to technical and non-technical business area representatives
Experience in large scale information technology implementations and operations preferred
Keep current with vulnerabilities, attacks, and countermeasures as well as devoting time to research and development activities
Coordinate and collaborate with leadership regarding technical vulnerabilities that may have the potential to impact enterprise operations
Maintain patch and vulnerability management practices to prevent the exploitation of vulnerabilities that exist within GM systems
Performing related duties as required or assigned.



Skills

Advanced knowledge of operating system and database security (Windows, Unix, Linux, SQL, and Oracle etc.)
Experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols
Hands-on experience with commercial and open-source network and application security testing tools
Demonstrated sound written and verbal communication skills.
Extensive ability to transform technical concepts into usable documented material for non-technical users
Work on multiple projects simultaneously, set priorities and meet deadlines
Work independently and manage workload with organization to meet expectations and objectives.
Absorb, retain and organize information gathered from multiple sources and in a variety of formats.



Bachelor's degree in Information Systems or related field with adequate experience in the field of information security is acceptable.
3-5 years hands-on experience in either: security assurance, penetration testing, or vulnerability management