*****NO C2C OR THIRD PARTY INQUIRIES*****

Security Vulnerability Manager

• Location: Onsite Minneapolis, MN – 100% no flex
• Compensation: Targeting salary $150-185k. There may be some flex. Benefit package is robust with 10% bonus potential and other lucrative benefits.

The Security Vulnerability Manager will be highly motivated and experienced to champion our vulnerability management program. In this critical leadership role, you will be responsible for the design, implementation, and ongoing management of a comprehensive program that identifies, prioritizes, and remediates vulnerabilities across our Technology environments. You will be a key partner to various teams, fostering collaboration to ensure timely and effective vulnerability mitigation.

Responsibilities

• Lead the design, development, and implementation of a best-in-class vulnerability management program.
• Develop and automate a robust patching process and cadence for Windows and Linux systems.
• Manage discovery, evaluation, and implementation of scanning, patching, and testing for security vulnerabilities.
• Oversee the configuration and maintenance of vulnerability scanning tools.
• Conduct regular vulnerability assessments and penetration testing to identify and prioritize remediations of security weaknesses.
• Analyze vulnerability data to assess risk and recommend appropriate mitigation strategies.
• Develop and implement vulnerability remediation plans, working collaboratively with all technology teams and the business.
• Develop dashboards to track and report on vulnerability management program metrics to key stakeholders.
• Stay up to date on emerging security threats and vulnerabilities, and ensure the program adapts accordingly.
• Review and approve mitigating controls, recommendations and communicate emerging threats.
• Research and assess emerging Security threats and vulnerabilities.

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 7+ years of experience in vulnerability management and security operations.
• Excellent leadership skills; 2+ years of team leadership experience preferred.
• Expertise with patching tools like MS SCCM and RedHat Satellite Servers.
• Experience in EDR administration (Microsoft Windows Defender, CrowdStrike Falcon, VMware Carbon Black, Palo Alto Network Cortex XDR, Cylance, Tanium etc.).
• Background working with EDR tools performing requirements gathering, deployment, configuration, and conducting threat hunting.
• Proficiency in working with operational information security disciplines (e.g. incident response, security infrastructure management, or monitoring services).
• Good understanding of NIST CSF Framework is a must.
• Proven experience in leading and managing a vulnerability management program.
• In-depth knowledge of vulnerability scanning tools and methodologies.
• Strong understanding of risk assessment and prioritization frameworks.
• Excellent communication, collaboration, and interpersonal skills.
• Experience in working with MDR service providers.
• Experience with security automation and SOAR.