Apply Now

IT Security Technical Lead

Round Rock, TX, US • Posted 30+ days ago • Updated 5 minutes ago

Full Time

On-site

Fitment

Dice Job Match Score™

👤 Reviewing your profile...

Job Details

Skills

IT Management
Security Analysis
Policy Administration
Impact Analysis
KPI
Leadership
Dashboard
SLA
Auditing
HIPAA
Sarbanes-Oxley
Training
Accountability
Security Controls
Regulatory Compliance
Computer Science
Information Security
IT Security
Management
Vulnerability Management
Penetration Testing
Payment Card Industry
Microsoft Windows
Linux
Network
Cloud Computing
Communication
Stakeholder Management
CISSP
CISM
CISA
GPEN
Health Care
Finance
Life Sciences
ServiceNow
EMC RSA Archer
SAP GRC
Mentorship
Scripting
API
Reporting
Workflow
Qualys
Recruiting
Quest

Summary

Job Description

IT Security Technical Lead - Vulnerability Management responsible for developing, leading, and continuously improving the enterprise-wide Vulnerability Management and Security Assessment program
This role ensures that vulnerability management across systems, applications, and clouds are identified, assessed, prioritized, and remediated alignment with business risk and compliance objectives.
The successful candidate will combine technical expertise, strategic oversight, and leadership skills to drive a measurable reduction in organizational risk while supporting Quest Diagnostics mission to protect data, systems, and customer

Responsibilities

Lead the global Vulnerability Management program, including policy management, scanning, reporting, and remediation tracking.
Design and maintain a comprehensive Vulnerability Management framework aligned with NIST, HIPAA, PCI, SOX, & etc.
Lead rapid assessment and remediation efforts for Zero day vulnerabilities, including immediate impact analysis, exploitability review, and prioritization based on business risk.
Server as Subject Matter Expert (SME) for Qualys, or similar scanning platforms - ensuring accurate detection, prioritization, and reporting of vulnerabilities.
Partner and Infrastructure, Application, and Risk Teams to coordinate assessment and remediation activities across diverse environments.
Define and monitor metrics and KPIs to evaluate program effectiveness and communicate progress to Senior leadership.
Develop and maintain dashboard and reports highlighting trends, remediation SLA performance and residual risk posture
Conduct ad-hoc vulnerability assessments and provide risk-based recommendations for remediation and mitigation
Provide consultancy and guidance on Vulnerability risk, Security exception, and compensating controls to technical and business stakeholders.
Support security compliance efforts by ensuring timely remediation of vulnerabilities tied to audit findings and regulatory frameworks (HIPAA, PCI, SOX).
Develop and deliver training, workshops, and awareness sessions to improve understanding and accountability across teams.
Continuously evaluate and implement process and automation improvement to enhance efficiency and reporting accuracy.
Conduct network penetration testing for PCI environment using CoreImpact (Fortra) or similar tools to validate security controls and achieve regulatory compliance.

Qualifications

Required Work Experience:

Bachelor's degree in computer science information security, or related discipline
Minimum 7 years if experience in IT Security, including 3+ years leading a Vulnerability or Threat management program
Proven experience with Qualys, Tenable, Wiz or equivalent vulnerability management tools.
Hands on experience performing network penetration testing for PCI environments or equivalent
Strong understanding of CVSS, CVE, & CWE
Familiarity with remediation strategies across Windows, Linux Network, and Cloud environments
Excellent Communication and stakeholder management skills with ability to convey risk to both technical and non-technical audiences.
Certifications such as CISSP, CISM, CISA, GPEN, or Qualys VMDR specialist
Experience in regulated industries (Healthcare, Financial or Life Sciences)
Familiarity with ServiceNow, Archer, or similar GRC platforms for exception and risk tracking
Experience leading and mentoring security engineers, specialists, or analysts.

Preferred Work Experience:

Develop and maintain custom scripts and API integrations to automate and streamline reporting and remediation workflows.
Leverage Qualys CAR (Custom Assessment and Remediation) and optimize for efficient remediation and scanning.

About the Team

Quest Diagnostics honors our service members and encourages veterans to apply.

While we appreciate and value our staffing partners, we do not accept unsolicited resumes from agencies. Quest will not be responsible for paying agency fees for any individual as to whom an agency has sent an unsolicited resume.

Equal Opportunity Employer: Race/Color/Sex/Sexual Orientation/Gender Identity/Religion/National Origin/Disability/Vets or any other legally protected status.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: QUEPA001
Position Id: dba1d67e5f31284e1d2b692d50a2534f
Posted 30+ days ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Senior Manager, Security Delivery

Austin, Texas

•

Today

Be part of a team that unleashes the power of leading-edge technologies to help improve the health and well-being of those most vulnerable in our country and communities. Working at Gainwell carries its rewards. You'll have an incredible opportunity to grow your career in a company that values work flexibility, learning, and career development. You'll add to your technical credentials and certifications while enjoying a generous, flexible vacation policy and educational assistance. We also have

Full-time

USD 120,000.00 - 190,000.00 per year

Network Security Architect, Consultant

Round Rock, Texas

•

Today

Network Security Architect, Consultant The Dell Security & Resiliency organization manages the security risk across all aspects of Dell's business. You will have an excellent opportunity to influence the security culture at Dell and further develop your career. Join us as a Network Security Architect on our Enterprise Security Architecture team in Round Rock, TX or Hopkinton, MA to do the best work of your career and make a profound social impact. What you'll achieve As a Network Security Arc

Full-time

USD 184,450.00 per year

Information Security Project Manager

Austin, Texas

•

12d ago

Title: Information Security Project Manager Location: San Jose, CA or Austin, TX Job Type: Contract / Full Time The Information Security (InfoSec) Program Manager is a strategic leader responsible for orchestrating large-scale, cross-functional security initiatives within a dynamic and ambiguous business landscape. Leveraging more than 15 years of experience in information security, risk management, and program delivery, this individual possesses the vision, subject matter expertise, and exec

Easy Apply

Full-time, Contract, Third Party

Information Security Project Manager (San Jose, CA or Austin, TX)

Austin, Texas

•

Today

The Information Security (InfoSec) Program Manager is a strategic leader responsible for orchestrating large-scale, cross-functional security initiatives within a dynamic and ambiguous business landscape. Leveraging more than 15 years of experience in information security, risk management, and program delivery, this individual possesses the vision, subject matter expertise, and executive presence to drive enterprise-wide improvements in security posture, regulatory compliance, and organizational

Easy Apply

Full-time

$50 - $55

Search all similar jobs