Vulnerability Management Engineer/Lead Engineer - Cyber Security (5-10 yrs)

GENERAL FUNCTION : This position leverages Momentive's vulnerability management tools to identify, assess, prioritize, and remediate security vulnerabilities across the enterprise.

The role is responsible for administering and enforcing the Vulnerability Management Program while enhancing its effectiveness through regular evaluation and improvement

DUTIES & RESPONSIBILITIES :

- Lead the Vulnerability Management Program including process development, tooling, integrations, reporting and ensuring regulatory compliance with relative standards.

- Lead regular vulnerability scans to identify security risks across systems and applications.

- Lead the execution of Secure-SDLC tooling to include DAST, SAST, network vulnerability & penetration testing.

- Analyze and prioritize vulnerabilities based on severity, impact, and business risk.

- Work closely with IT, development, and infrastructure teams for remediation actions.

- Monitor threat intelligence feeds and emerging vulnerabilities.

- Collaborate with compliance teams to ensure adherence to relevant regulations

- Prepare and deliver comprehensive technical reports and concise executive summaries.

- Evaluate and optimize vulnerability management tools and workflows for improved effectiveness.

- Ensure alignment of vulnerability management activities with global standards and best practices.

- Provide technical expertise and guidance to internal teams on mitigating vulnerabilities efficiently.

- Support incident response activities.

MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED :

Experience :

- Minimum 5 years of related cybersecurity & vulnerability management experience

- Minimum 3 years of leading security engineers

- Typically requires a bachelor's degree or equivalent experience.

- Security+, CISSP, or other relevant certifications.

Computer/Technical :

- Advanced knowledge of network, system, and web application attacks and mitigations.

- Advanced knowledge of vulnerability management programs & tooling.

- Advanced knowledge of Vulnerability identification, prioritization, and remediation.

- Knowledge of information systems, security systems, and cybersecurity best practices.

- Knowledge of Security Information and Event Management Software.

OTHER SKILLS :

- Developing documentation, processes, and standards

- Strong verbal and written communication skills

- Working with cross functional teams to develop roadmaps.

- Proven analytical and problem-solving abilities

- Ability to effectively prioritize and execute tasks in a high-pressure environment

- Ability to present ideas in business-friendly and user-friendly language

- Highly self-motivated and directed

- Strong attention to detail

- Team-oriented and skilled in working within a collaborative environment

WORKING CONDITIONS :

- Normal office environment

- Extending viewing of computer screens

- Some overnight travel may be required

ESSENTIAL FUNCTIONS :

- Spends time at a computer workstation and desk.

- Moves throughout department or other locations to access or exchange information.

- May involve carrying loads up to 50 lbs and being able to remain in a stationary position.

- May involve lowering oneself to file, and reaching, twisting or turning.

- Involves handling office materials, typing, writing and other tasks that require manual dexterity.

- Continuous listening.

- This job may require accommodating different bodily movements and physical abilities