CrawlJobs Logo

Senior Manager, Vulnerability Management Enablement

schwab.com Logo

Charles Schwab

Location Icon

Location:
United States , Southlake

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

140000.00 - 145000.00 USD / Year
Save Job
Save Icon
Job offer has expired

Job Description:

The Schwab Cybersecurity Services (SCS) organization is a centralized 1st Line of Defense Center of Excellence (COE) that provides security services to advance Schwab’s security posture and enhance the protection of Schwab’s critical assets. Enterprise Vulnerability Management (EVM) performs scanning, risk prioritization, and enforcement across patching and secure configuration, as well as holistic risk aggregation for other control opportunities. The Enterprise Vulnerability Management (EVM) team is expanding our aggregation of platform risks, as well as using agentic AI and other automation to enable wider visibility and increased velocity of execution. We need a skilled and experienced Senior Manager to envision, design, and execute implementation and value realization for these capabilities. You’ll be instrumental in converting our vision for industry-leading holistic risk aggregation into life.

Job Responsibility:

  • Design and implement scalable vulnerability and layered security monitoring using agentic AI (e.g. Copilot Studio, Vertex AI), RPA (e.g. PowerPlatform), or other platforms
  • Evangelize the value realization and expansion of automated processes for wider and faster vulnerability management processes
  • Continuously re-evaluate the monitoring approach for layered security implementation, including automated detection, aggregation, metrics, and escalation
  • Partner with security subject matter experts (SMEs) across all security domains to identify risks, monitoring options, and actionable remediation guidance for holistic vulnerability and layered security risk management
  • Advocate for scalable security: reduce noise, improve coverage, and automate sanity checks

Requirements:

  • 5+ years of security experience, especially focused on layered security controls including patching, configuration management, EDR, IAM, and/or network access rules
  • 5+ years of experience with security control monitoring, prioritization, and enforcement
  • 5+ years of experience with process analysis, documentation, and improvement
  • 3+ years of experience with Robotics Process Automation (RPA) or other automation tools
  • 3+ years of experience with process governance and compliance management
  • 1+ years with hands-on experimentation and value realization with LLM or agentic AI
  • Solid systems knowledge (Linux, Windows, cloud, or networking preferred)
  • A clear, thoughtful communication style and a collaborative approach to problem solving
  • Bachelor’s degree in computer science, engineering, or a related field

Nice to have:

  • 3+ years of experience with vulnerability identification, prioritization, and/or enforcement
  • Security certifications, such as CISSP, CISM, GIAC, or Cloud Security certifications are preferred
  • Hands on experience administering one or more technology platforms is a plus
What we offer:
  • 401(k) with company match and Employee stock purchase plan
  • Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
  • Paid parental leave and family building benefits
  • Tuition reimbursement
  • Health, dental, and vision insurance
  • Bonus or incentive opportunities

Additional Information:

Job Posted:
January 30, 2026

Expiration:
February 02, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Charles Schwab - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Manager, Vulnerability Management Enablement

Senior Operations Manager

HPE Operations is our innovative IT services organization. It provides the exper...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Over 12+ years of experience in IT Services with at least 5 - 6 years of experience in leading a delivery organization in IT Infrastructure Managed Services domain, Specially in the Microsoft Domain
  • Has 8-10 Yrs Experience in Supporting Large Enterprise Managed Services Infra Delivery Accounts
  • At least 5+ years of experience managing delivery of technical solutions related to Azure Cloud/ AWS or Infrastructure as well as automation
  • Prior experience with MS Azure Cloud and/or Cloud Infrastructure (AWS, GCP, Terraform, Linux) is mandatory
  • Must have serviced clients outside India with a solid track record of managing clients globally
  • A proven talent and team developer
  • 2 - 3 years of rich experience running IT Operations for clients in a managed services model
  • Proven track record in Innovation that led to modernization, efficiency, and better outcomes
  • Microsoft Azure Cloud Certified
  • ITIL 3/4 Certified
Job Responsibility
Job Responsibility
  • Engage periodically with Geo / Region (Account Services, BU, Presales) representing GRSB/GMS
  • Establish and build trust and relation
  • Lead / Drive GMS related escalations in region, demonstrating ownership, accountability, and sustainable outcomes
  • Lead and Support Large Enterprise Managed Services Infra Delivery Accounts
  • Excellence in TCE and aaS metric
  • Operationalize aaS metric (POR Item)
  • Flawless audits on accounts from the region during renewal of ISO, CMMI, Soc1/Soc2, SAP
  • Meet the compliance (Secure Access, Patching, Vulnerability etc..) standards for GMS customers in the region
  • Engage with engineering teams to deploy platforms in Customer environments before transition
  • Planning and execution of seamless transition and onboarding of clients
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Head of cyber threat exposure and attack surface management

Lead the enterprise-wide Continuous Threat Exposure Management (CTEM) strategy, ...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cybersecurity with direct exposure to vulnerability management, red teaming, or threat exposure reduction
  • Proven track record leading programs integrating CSPM, SSPM, ASM, BAS, or exposure correlation technologies
  • Strong understanding of attack paths, adversary emulation, and continuous validation concepts
Job Responsibility
Job Responsibility
  • Own and drive the global CTEM strategy, establishing a continuous, threat-driven exposure management lifecycle aligned with NIST, MITRE, and CISA Secure-by-Design principles
  • Lead and develop a high-performing CTEM team, fostering collaboration, technical excellence, and an outcome-driven culture
  • Integrate and oversee key exposure management technologies, including Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), Attack Surface Management (ASM), Breach & Attack Simulation (BAS), and other exposure correlation platforms
  • Correlate assets, identity, vulnerability, and configuration to identify high-impact, exploitable attack paths and inform prioritized remediation strategies
  • Collaborate with Application Security, Vulnerability Management, Red Team, and Security Operations to synchronize discovery, validation, and remediation of exposures across the enterprise
  • Align CTEM outputs with real-world adversary behaviors, leveraging Red Team and Threat Intelligence input to validate attack paths and focus on exploitable conditions
  • Drive automation and AI-enabled analytics to continuously map, assess, and measure reductions in the organization’s attack surface
  • Translate technical findings into business risk language, enabling senior leadership and risk committees to make data-driven investment decisions
  • Define and lead CTEM governance and operating models, ensuring exposure assessments, validation, and remediation tracking are embedded in operational processes
  • Establish clear KRIs and maturity metrics that demonstrate continuous improvement in visibility, validation, and response effectiveness
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Governance Reporting & Analysis Intermediate Analyst

In this role, the Governance Reporting & Analysis Intermediate Analyst will act ...
Location
Location
Hungary , Budapest
Salary
Salary:
8202730.00 - 12775670.00 Ft / Month
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 2-5 years of experience in operational risk management, compliance, audit, or other control-related functions in the financial services industry
  • Ability to identify, measure, and manage key risks and controls
  • Good knowledge in the development and execution for controls
  • Experience in control related functions in the financial industry
  • Experience in implementing sustainable solutions and improving processes
  • Understanding of compliance laws, rules, regulations, and best practices
  • Understanding of Citi’s Policies, Standards, and Procedures
  • Good analytical skills to evaluate complex risk and control activities and processes
  • Excellent verbal and written communication skills, with a demonstrated ability to engage at the senior management level
  • Demonstrated relationship management skills with ability to deepen relationships and build partnerships with key stakeholders
Job Responsibility
Job Responsibility
  • Act as Lead Business Recovery Coordinator within CISO providing support and oversight of one of CISO’s BCPs and BIAs
  • Manage implementation of Enterprise Resilience policy and standard requirements and other CoB program elements, including documentation of BCPs and BIAs
  • Provide leadership, guidance, and coordination for the entire testing process before, during, and after the testing life cycle
  • Complete all pretests and posttests for Business Testing in Fusion
  • Validate post test results including evidence review
  • Support CISO’s Governance, Controls & Policy (GCP) RMO with coordination, implementation, and oversight of the Records Management program for GCP
  • Must be able to work closely with senior business leaders to promote consensus on decisions that are right for the organization
  • Good understanding of the Citi Risk & control framework and the underlying fundamentals on Risk Management
  • Help develop standardized risk and controls reporting to ensure sound, reliable, and consistent information exists across the organization, enabling better management and decision-making in line with the expectations senior of management, Board, and Regulators
  • Help identify potential areas of vulnerability for management
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Vice President Governance Reporting & Analysis Lead Analyst

Individuals in Governance Reporting & Analysis are responsible for developing st...
Location
Location
United States , Tampa; New York
Salary
Salary:
113840.00 - 170760.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6-10 years of experience in operational risk management, compliance, audit, or other control-related functions in the financial services industry
  • Ability to identify, measure, and manage key risks and controls
  • Strong knowledge in the development and execution for controls
  • Proven experience in control related functions in the financial industry
  • Proven experience in implementing sustainable solutions and improving processes
  • Understanding of compliance laws, rules, regulations, and best practices
  • Understanding of Citi’s Policies, Standards, and Procedures
  • Strong analytical skills to evaluate complex risk and control activities and processes
  • Strong verbal and written communication skills, with a demonstrated ability to engage at the senior management level
  • Strong problem-solving and decision-making skills
Job Responsibility
Job Responsibility
  • Support development of standardized risk and controls reporting to ensure sound, reliable, and consistent information exists across the organization, enabling better management and decision-making in line with the expectations senior of management, Board, and Regulators
  • Provide data analysis, governance, end-to-end management, and oversight for Governance Committees in adherence to Citi’s Policies, Standards, and Procedures
  • Enable proactive management of the risk and control environment through comprehensive reporting and analysis
  • Support identification of potential areas of vulnerability to key stakeholders to help support implementing an appropriate measure to mitigate risk
  • Regularly review and update risk and controls reporting standards and procedures to ensure their effectiveness and compliance with regulatory requirements
  • Support regular updates to senior management and the Board, keeping them informed of risk and control status and to ensure their reporting expectations are met
  • Support the operations of Citi's governance committees, including coordinating meetings, managing agendas, and ensuring follow-up on action items
  • Provide updates for committee chairs decision-making process in alignment with organizational goals and governance standards
  • Support compliance with governance standards and regulatory requirements related to committee operations
  • Assist development and implementation of controls training program covering regulatory requirements, internal control procedures, and industry best practices
What we offer
What we offer
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right
New

Head of Information Security

As River Island’s Head of Information Security, you’ll play a strategic and hand...
Location
Location
United Kingdom , West London
Salary
Salary:
Not provided
riverisland.com Logo
River Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a senior information security role, ideally within a complex, multi-channel retail or technology environment
  • Strong technical grounding across key security domains: network, cloud, endpoint, application, and data security
  • Experience managing or working with vulnerability management tools, SIEM/SOC environments, and incident response processes
  • Familiarity with frameworks and standards such as ISO 27001, NIST, CIS, PCI DSS, and GDPR
  • Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organisation
  • Analytical, pragmatic, and calm under pressure — with a focus on enabling the business, not blocking it
Job Responsibility
Job Responsibility
  • Define, implement, and evolve River Island’s information security strategy in line with business objectives, regulatory obligations, and risk appetite
  • Lead the development and maintenance of Information Security policies, standards, and controls, ensuring alignment with frameworks such as ISO 27001, NIST CSF, and the SANS Top 18
  • Define and report security KPIs/KRIs to senior management to senior leadership representing risk posture, compliance status, and strategic improvement initiatives
  • Own and manage the Information Security Risk Register
  • ensure risks are assessed, documented, and mitigated effectively
  • Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations
  • Conduct and coordinate enterprise-wide risk assessments, audits, and internal reviews
  • Champion a pragmatic, risk-based approach to security — balancing protection, productivity, and customer experience
  • Own and govern IAM standards (RBAC, joiner/mover/leaver, privileged access, MFA, SSO) across corporate, store and customer-facing platforms
  • Oversee operational security activities, including threat detection, vulnerability management, and incident response
What we offer
What we offer
  • Generous 50% staff discount so you can treat yourself to the latest products, and a bargain staff shop on site
  • Reducing Islanders everyday expenses through discounts, benefits, financial advice, wellbeing solutions and more through Reward Gateway
  • A free onsite gym, subsidised restaurant & café to fill you needs
  • Various social events to socialise throughout the year
  • Every family is unique, we support Islanders with all different family setups enhanced maternity, paternity, adoption & fertility treatment
  • We also work closely with the Retail Trust to create dedicated support for all our Islanders
  • Flexible working is a given, on top of payday and summer early finish Fridays
  • Give as you earn scheme, a ‘Giver Island’ day each year and receive matched funding
  • Support with upskilling through on the job training and qualifications
  • A succession plan if you want to progress
  • Fulltime
Read More
Arrow Right

Cyber Security Defense Head of Department

The Cyber Security Defense Head of Department (HOD) will lead and mature our org...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across the various cyber defense disciplines (SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions)
  • Proven experience leading cyber defense teams
  • Demonstrated ability to hire, mentor, and lead high-performing technical teams
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related discipline
  • Strong knowledge of threat detection, incident response, adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development
  • Excellent incident management, communication, and executive reporting skills
  • Proficient in English for effective communication and coordination
  • In the absence of IR team members, utilize a flexible work schedule to facilitate the security incident response process for high/critical incidents
Job Responsibility
Job Responsibility
  • Develop and execute the Cyber Defense strategy aligned with organizational goals, customer requirements and the evolving threat landscapes
  • Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation
  • Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats
  • Oversee 24x7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3
  • Drive continuous enhancement of detection engineering, threat hunting, and security analytics
  • Implement best-in-class security tooling, automation, and operational processes
  • Lead internal Red Team and offensive security capabilities, including penetration testing
  • Define testing methodologies, operational rules of engagement, and reporting standards
  • Translate offensive findings into actionable improvements for defensive teams and architecture
  • Oversee the Incident Response program, ensuring rapid and effective handling of security incidents
  • Fulltime
Read More
Arrow Right

Cyber Defense Head of Department

The Cyber Security Defense Head of Department (HOD) will lead and mature our org...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across the various cyber defense disciplines (SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions)
  • Proven experience leading cyber defense teams
  • Demonstrated ability to hire, mentor, and lead high-performing technical teams
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related discipline
  • Strong knowledge of threat detection, incident response, adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development
  • Excellent incident management, communication, and executive reporting skills
  • Proficient in English for effective communication and coordination
  • In the absence of IR team members, utilize a flexible work schedule to facilitate the security incident response process for high/critical incidents
Job Responsibility
Job Responsibility
  • Develop and execute the Cyber Defense strategy aligned with organizational goals, customer requirements and the evolving threat landscapes
  • Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation
  • Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats
  • Oversee 24x7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3
  • Drive continuous enhancement of detection engineering, threat hunting, and security analytics
  • Implement best-in-class security tooling, automation, and operational processes
  • Lead internal Red Team and offensive security capabilities, including penetration testing
  • Define testing methodologies, operational rules of engagement, and reporting standards
  • Translate offensive findings into actionable improvements for defensive teams and architecture
  • Oversee the Incident Response program, ensuring rapid and effective handling of security incidents
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

As a Senior Cloud Security Engineer at Aignostics, you will be a key member of o...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
aignostics.com Logo
Aignostics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in cloud security or platform security engineering, with a track record of securing complex, cloud-native infrastructure in production environments
  • Deep experience securing GCP and/or AWS environments, with strong knowledge of IAM, PAM, network security, and container platforms
  • Proven experience conceptualizing and implementing centralized identity provider solutions, SSO & SCIM, and authentication frameworks
  • Experience building CVE management programs, implementing automated scanning solutions, and driving remediation processes
  • Strong programming and scripting abilities (Python, Bash, Go) to automate security processes, build security tools, and integrate security into CI/CD pipelines
  • Ability to explain complex security concepts to technical and non-technical audiences, drive security decisions, and collaborate across teams (fluent in English, German is a plus)
  • Understanding of security compliance frameworks (ISO 27001, GDPR, HIPAA) and experience implementing controls to meet regulatory requirements
Job Responsibility
Job Responsibility
  • Secure our cloud foundation in GCP and AWS: Design and implement security controls for our GCP and AWS infrastructure, including Kubernetes, storage services, VPCs, Cloud Run, and cloud-native workloads to protect sensitive healthcare data and AI models
  • Architect central identity management: Evolve our central Identity Provider (IDP) — unifying authentication, authorization, self-service access, and privileged access management across cloud services
  • Manage vulnerabilities at scale: Strengthen our CVE management processes and automate vulnerability scanning for containers and infrastructure
  • Automate security at scale: Develop security-as-code solutions using Terraform, create CI/CD security gates using policy-as-code, and build automated remediation workflows to embed security into our development lifecycle
  • Enable secure development: Partner with engineering and data science teams to provide security consultation, create self-service security patterns, and educate developers on security best practices
What we offer
What we offer
  • Cutting-edge AI research and development, with involvement of Charité, TU Berlin and our other partners
  • Work with a welcoming, diverse and highly international team of colleagues
  • Opportunity to take responsibility and grow your role within the startup
  • Expand your skills by benefitting from our Learning & Development yearly budget of 1,000€ (plus 2 L&D days), language classes and internal development programs
  • Mentoring program, you’ll learn from great experts
  • Flexible working hours and teleworking policy
  • Enjoy your well-deserved time off within our 30 paid vacation days per year
  • We are family & pet friendly and support flexible parental leave options
  • Pick a subsidized membership of your choice among public transport, sports and well-being
  • Enjoy our social gatherings, lunches, and off-site events for a fun and inclusive work environment
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy