Lead Director ? Vulnerability Scanning (Remote Opportunity In The USA)

Lead Director ? Vulnerability Scanning

If you have been leading vulnerability scanning in large-scale enterprise environments for over 10 years, this new opportunity has just became available at CVS...

Reporting to the Executive Director, our Lead Director of Vulnerability Scanning will oversee and manage the enterprise vulnerability scanning function as part of the overall Vulnerability Management Services program. This role is critical in leveraging scanning technology to perform security vulnerability detection in cloud, on-prem and perimeter assets. The forward-thinking and innovative Lead Director will work cross-collaboratively with technology teams across the Enterprise.

What You Are Known For:
? You are considered the strategic and tactical leader for the oversight of the centralized enterprise vulnerability management function in your Fortune 100 or NASDAQ 50 company.
? Reporting into the CISO, VP, or Executive Director of Security, you hire, mentor, and lead by example a team of at least 8 security / cybersecurity engineers and analysts.
? You and team are recognized as the subject matter experts in enterprise-wide vulnerability detection, root cause analysis, and employing the best in breed methods, processes, tools and standards to ensure vulnerability scanning excellence on-prem, in the cloud, and in perimeter assets.
? Your influence equity is celebrated in part due to your positive interactions, integrity, predictive foresight, impeccable judgement, creativity, and excellence in collaboration with cross functional leaders, executives, and individual contributors.
? Your industry acumen and continuous improvement practices related to evolving security threat detection, next practice vulnerability risk documentation, and building a security excellence culture.

In This Role You Will:

Program Leadership:
? Develop and lead the Vulnerability Scanning strategic vision and roadmaps, implement best-in class risk detection technology, drive operational excellence, optimize operating costs, provide enhanced risk visibility and coordination of all related program activities.
? Ensure the scanning program aligns with industry standards and regulatory compliance requirements.

Vulnerability Scanning:
? Conduct comprehensive vulnerability scanning across all assets on-prem, cloud and perimeter.
? Analyze and interpret scanning results to identify potential security risks.
? Develop scanning monitoring to detect scanning failures. Analyze and remediate failures and rescan.
? Create scanning metrics to report on scan integrity.
? Oversee and control user access to vulnerability data to ensure that only authorized users have access to confidential data. Regularly review access rights to prevent unauthorized access.
? Coordinate scan windows with stakeholders in high impact areas.
? Adhere to an established technical change management process.
? Collaborate closely with third-party vendors on issue resolution.

Team Management:

Lead a team of security scanning analysts and engineers.
? Provide guidance, training, and professional development opportunities.
? Conduct performance reviews and manage team workload.

Reporting and Documentation:
? Generate detailed reports on vulnerability scanning success rates.
? Maintain accurate documentation of vulnerability risk detection.
? Maintain policies, standards, and procedures current.

Continuous Improvement:
? Stay current with emerging security threats, vulnerabilities, and technology trends.
? Implement improvements to the vulnerability scanning capability based on industry best practices and evolving threats.
? Promote a culture of security awareness within the organization.
? Develop training programs to keep staff members informed of scanning best practices.
? Leads creation and/or implementation of technical solutions and architecture for building, testing, implementing, and troubleshooting Program solutions of the most complex nature.
? Applies in-depth knowledge of industry best practices, compliance obligations (SOX, PCI, etc.) and internal standards to support compliance, security, and risk management objectives.
? Proficient Knowledge of cyber threats and vulnerabilities.
? Proficient Knowledge of incident handling procedure

Required Qualifications
? 10+ years of leadership experience developing and leading a workforce of Cybersecurity experts.
? 10+ years of professional experience executing enterprise vulnerability scanning at a Fortune 100 or NASDAQ 50 company.
? Deep understanding of security controls and alignment to regulatory compliance (examples: NIST, ISO, HITRUST, HIPAA, PCI)
? Technical understanding of vulnerability scanning and reporting processes.
? Working knowledge of risk data analysis, dashboards and visualization, and executive risk reporting.
? Excellent communication/interpersonal skills, both verbal and written.
? Ability to create and execute a vision, motivating others to adopt strategies in collectively moving the organization forward.
? Strong business understanding, with the ability to leverage technology to solve business and technical issues.
? Solid presentation skills, with the ability to prepare briefings and present technical information to technical and non-technical audiences.
? Develop and manage relationships with internal and external customers, suppliers, and departments to ensure cohesive and collaborative communication.
? Excellent analytic and problem-solving skills.
? Ability to successfully manage multiple, concurrent projects, with a track record of completing projects successfully on time and on budget.
? Ability to ensure the effective achievement team objectives by managing staff and product providers.

Education

Bachelor?s degree from accredited university or equivalent work experience (HS diploma + 4 years relevant experience).

To Be Considered:

If you?d like to be at the center of helping millions of people on their path to better health every day, please apply via LinkedIn by including your resume and completing the introductory prequalification questions. We will contact individuals whose profiles and responses most closely match the requirements of this position.

No agency assistance is required to assist us in filling this role.

Pay Range

The typical pay range for this role is: $144,200 - $288,400.

This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company?s equity award program

Apply Job!