Apply Now

Associate Director Info Security

Baltimore, MD, US • Posted 16 days ago • Updated 2 hours ago

Full Time

On-site

Fitment

Dice Job Match Score™

🛠️ Calibrating flux capacitors...

Job Details

Skills

Cloud Computing
Finance
Web Application Security
Network Security
Netsparker
Qualys
Computer Networking
Operating Systems
Threat Analysis
Penetration Testing
Risk Management
Project Management
Writing
Collaboration
Team Management
Coaching
eXist
Microsoft
JIRA
Regulatory Compliance
Database
Web Applications
Conflict Resolution
Problem Solving
Critical Thinking
Research
Information Security
Process Optimization
Virtual Machines
Computer Science
Information Systems
Cyber Security
Management
Supervision
Vulnerability Management
Privacy
Incident Management
Security Policy
Process Modeling
Workflow
Process Mapping
Communication
Leadership

Summary

The Threat & Vulnerability Team Manager will be leading critical support for the Information Security's vulnerability management program (VM) for both the on-prem & cloud environments managed by One Main Financial (OMF). They will help create a robust proactive approach for preventing unauthorized access, changes, or exploitation of vulnerabilities through mitigation, active defenses, and automated responses. The VM team's portfolio of activities includes providing vulnerability detection and remediation oversight, vulnerability research, secure baseline compliance, web application security, host-based security, network security, and acting as security subject matter experts for all the organization.

Required TVM Technical Competencies

Extensive knowledge and hands-on experience with a variety of Vulnerability Management Tools such as Tenable, DB Protect, Netsparker, Qualys, etc.
Expert knowledge of the Vulnerability Management lifecycle
Proven track record of designing, implementing, and managing a successful Threat & Vulnerability Management Program
Strong knowledge of networking, operating systems, databases, and web applications
Strong knowledge of cybersecurity operations (Cyber Threat Intelligence, Penetration testing, & Incident Response)
Deep knowledge and experience of performing both manual and automated asset discovery and enumeration
Deep knowledge and experience of systematic and data-driven asset prioritization
Expert knowledge and successful application of risk management frameworks
Required TVM Management Competencies
Track record of leading enterprise-level vulnerability management teams with a history of increasing responsibility
Expert project management skills
Ability to explain vulnerability management concepts to a wide range of audiences verbally and in writing
Expertise in developing and improving vulnerability management operations and processes
Strong interpersonal skills and the ability to collaborate with a variety of stakeholders to ensure vulnerability management compliance
Expert problem solving and critical thinking skills
Proactive disposition and ability to execute on leadership vision with minimal oversight

Additional Responsibilities

Perform Project/Team Management activities, including assigning tasks, 1-1 coaching, upskilling junior team members, performance evaluations, etc.
Lead the redesign, build and day-to-day operations of the vulnerability management (VM) team to include standardization of processes and managing customer expectations.
Effectively manage a team of vulnerability management professionals who are focused on proactively preventing the exploitation of IT vulnerabilities that exist across the OMF environments.
Successfully assign and complete VM projects, tasks, and\or initiatives on time and to vulnerability management standards.
Track all team projects, tasks, and/or initiatives in a centralized location (e.g., Microsoft Lists, Jira, etc.) and provide a reportable schedule.
Drive actionable metrics which help ensure the team reduce the time and resources needed to detect, investigate, analyze and remediate vulnerabilities.
Manage performance of risk-based assessments of current and emerging information security issues to support the mission by prioritizing remediation efforts.
Proactively delegate support of regular vulnerability, compliance/configuration, database, and web application scanning.
Apply effective problem solving and critical thinking skills to evaluate applicable solutions, conduct pilot/evaluations for proof of concepts and ultimately implement better mitigating controls.
Research current and emerging information security exploits, threats, and vulnerabilities and disseminate contextual information to appropriate stakeholders.
Facilitate exception handling, waiver processing and escalations as needed.
Maintain regular communication with security leaderships on process optimization, tools tuning and resetting of VM priorities as business needs prudently recommend.

Minimum Qualifications

Bachelor's degree and 8+ years of related work experience; or a graduate degree and approximately 7-8 years of related work experience in the fields of Computer Science, Information Systems, Engineering, Business or related major
A minimum of 6+ years of professional work experience in cybersecurity with at least 5 years in Vulnerability Management.
3 or more years managing\supervising a team of vulnerability management professionals.
Knowledge of general security concepts and methods such as vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures, and governance.
Experience in process definition, workflow design and process mapping
Excellent interpersonal, written/verbal communication and leadership skills with the ability to make recommendations to all levels of the organization.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: orcfeed
Position Id: 26126_141531129979
Posted 16 days ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Associate Director Info Security

Baltimore, Maryland

•

Today

Full-time

Cyber Security Task Lead

Linthicum Heights, Maryland

•

Today

The Intelligence Sector at Leidos currently has an opening for a Cyber Security Task Lead to work in our Linthicum, MD location. This is an exciting opportunity to use your experience helping maintain customer mission security. In this mission we provide comprehensive operational, analytical, technical, forensic, and program management support. Primary Responsibilities. As the Cyber Security Task Lead, you will drive a "security-first" culture by leading enterprise cybersecurity initiatives inc

Full-time

USD 82,550.00 - 149,225.00 per year

Manager, Network Security

Baltimore, Maryland

•

Today

We are seeking a Network Security Manager to lead a team of engineers and contractors responsible for safeguarding the organization's network and cloud environments. In this role, you'll manage daily operations, guide technical decision-making, cultivate team growth, and ensure the consistent and secure delivery of foundational network-security functions. The ideal candidate is a balanced thinker-technically fluent across modern network-security platforms and skilled in coaching, delegation, pr

Full-time

USD 125,000.00 - 155,000.00 per year

Manager, Network Security

Baltimore, Maryland

•

16d ago

Full-time

USD 125,000.00 - 155,000.00 per year

Search all similar jobs