CrawlJobs Logo
Tier4 Group Logo Tier4 Group · IT - Administration

Sr. Manager, Information Technology and Information Security Risk

United States, Reston · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Description

Sr. Manager, Information Technology and Information Security Risk Hybrid Work Schedule- 3 days onsite in Reston, VA SUMMARY OF POSITION: The Information Technology and Information Security Risk (IT/IS) Sr. Manager plays a critical enterprise-wide role in overseeing cybersecurity, technology, data, AI and information security risk governance. This role partners with the Chief Risk Officer (CRO) and the Enterprise Risk Management team in identifying, assessing, and monitoring the organization’s technology and cybersecurity risk profile to ensure alignment with the our client’s strategic objectives, risk appetite, and regulatory expectations. This role has broad ownership and visibility across the enterprise and serves as a key second-line risk partner to senior leadership, business lines, IT, Information Security, Compliance, and third-party vendors. The Senior Manager will help ensure adherence to regulatory expectations from agencies such as FHFA, FFIEC, OCC, FDIC, SEC, and FINRA. This person will partner with business lines, IT, and compliance teams to maintain a strong security posture and reduce exposure across critical financial systems and third-party relationships, strengthening the organization’s overall cyber resilience and operational risk management framework. Core Responsibilities Evaluate and provide independent challenge regarding the alignments of the organization’s IT and IS strategy with enterprise business objectives, risk appetite, and regulatory expectations. Review and assess the adequacy of information technology and security risk assessments across applications, infrastructure, and business processes. Partner with IT project teams to influence decisions related to technology architecture, cybersecurity controls, system implementations, and operational risk mitigation strategies Evaluate new and existing systems, platforms, and SAAS integrations for cybersecurity risks and regulatory compliance impacts. Conduct third party and vendor security risk assessments, including review of SOC 1/SOC 2 reports, SIG questionnaires, penetration testing results, and remediation plans to ensure vendor information security practices align with OF expectations. Provide effective second-line oversight and credible challenge related to cybersecurity incidents, operational disruptions, and emerging technology risks, including analysis of potential impacts to customer data, financial systems, and regulatory obligations. Collaborate with business units and technology teams to identify, document, and monitor risks, ensuring remediation activities meet regulatory timelines and internal risk appetite. Oversee the implementation of information technology and security risk management policies and the Cyber-Security Incident Response Plan Conduct cyber security awareness training and education through periodic email phishing tests, in-person and computer-based training, presentations to employees, and security related tabletop exercises. Monitor the status of remediation for IT and IS related issues and ensure that the remediation documentation is complete and adequate. Monitor cybersecurity and financial sector threat intelligence; communicate emerging risks to leadership. Oversee IT and IS key risk indicators (KRIs) and maintain clear and accurate dashboards and reporting metrics for senior management, risk committees, and regulators Ability to analyze complex technical environments and communicate risk in business-focused terms. Strong knowledge of information security frameworks including NIST CSF, NIST 800‑53, ISO 27001, CIS Controls. Effective communication skills for interacting with auditors, examiners, and senior management. PREFERRED SKILLS AND EXPERIENCE: Bachelor’s degree in Information Security, Cybersecurity, Risk Management, or related fields (or equivalent work experience) preferred. 8–10 years of relevant experience in information security or risk management roles with experience in financial services, banking, payments, fintech, or related regulatory environments preferred. Experience with data analytics and visualization tools (e.g., Power BI, Tableau, or Python). Experience working in a regulated financial services or technology environment. CRISC, CISSP, CISM, Security+ or CGEIT or similar certifications

Job Responsibility

  • Evaluate and provide independent challenge regarding the alignments of the organization’s IT and IS strategy with enterprise business objectives, risk appetite, and regulatory expectations
  • Review and assess the adequacy of information technology and security risk assessments across applications, infrastructure, and business processes
  • Partner with IT project teams to influence decisions related to technology architecture, cybersecurity controls, system implementations, and operational risk mitigation strategies
  • Evaluate new and existing systems, platforms, and SAAS integrations for cybersecurity risks and regulatory compliance impacts
  • Conduct third party and vendor security risk assessments, including review of SOC 1/SOC 2 reports, SIG questionnaires, penetration testing results, and remediation plans to ensure vendor information security practices align with OF expectations
  • Provide effective second-line oversight and credible challenge related to cybersecurity incidents, operational disruptions, and emerging technology risks, including analysis of potential impacts to customer data, financial systems, and regulatory obligations
  • Collaborate with business units and technology teams to identify, document, and monitor risks, ensuring remediation activities meet regulatory timelines and internal risk appetite
  • Oversee the implementation of information technology and security risk management policies and the Cyber-Security Incident Response Plan
  • Conduct cyber security awareness training and education through periodic email phishing tests, in-person and computer-based training, presentations to employees, and security related tabletop exercises
  • Monitor the status of remediation for IT and IS related issues and ensure that the remediation documentation is complete and adequate
  • Monitor cybersecurity and financial sector threat intelligence
  • communicate emerging risks to leadership
  • Oversee IT and IS key risk indicators (KRIs) and maintain clear and accurate dashboards and reporting metrics for senior management, risk committees, and regulators
  • Ability to analyze complex technical environments and communicate risk in business-focused terms
  • Strong knowledge of information security frameworks including NIST CSF, NIST 800‑53, ISO 27001, CIS Controls
  • Effective communication skills for interacting with auditors, examiners, and senior management

Requirements

  • Bachelor’s degree in Information Security, Cybersecurity, Risk Management, or related fields (or equivalent work experience) preferred
  • 8–10 years of relevant experience in information security or risk management roles with experience in financial services, banking, payments, fintech, or related regulatory environments preferred
  • Experience with data analytics and visualization tools (e.g., Power BI, Tableau, or Python)
  • Experience working in a regulated financial services or technology environment
  • CRISC, CISSP, CISM, Security+ or CGEIT or similar certifications
Tier4 Group - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Sr. Manager, Information Technology and Information Security Risk

8 matching positions

Sr. Manager, Intellectual Property Security

The Sr. Manager, Intellectual Property Security is responsible for maintaining t...
Location
Location
United States , Burbank
Salary
Salary:
121500.00 - 151000.00 USD / Year
funko.com Logo
Funko
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years professional experience in IP protection, brand security or related field
  • Minimum 5 years in entertainment/licensing industry
  • Bachelor's Degree, MBA, and/or Master’s degree is preferred
  • Experience working with major entertainment studios (Disney. WB, etc.) and/or working in a licensing, retail, or wholesale consumer environment and understanding related IP protection matters
  • Experience in developing technical solutions for data protection such as DLP, digital watermarking, etc
  • Experience evaluating, implementing, and supporting new applications, services, and solutions
  • Experience in developing, implementing, and maintaining trade secret programs across organizations
  • Exceptional communication and influencing skills
  • Experience working with external stakeholders who are both customers and suppliers where there is a commercial relationship to manage
  • Ability to manage large complex projects and to step into projects already in progress, or in need of rescue, and effectively assume a leadership role
Job Responsibility
Job Responsibility
  • Develop in-depth knowledge of Funko’s business model with a focus on licensing, product development and marketing to be able to identify trade secrets associated with licensed assets and the corresponding risk scenarios
  • Responsible for the protection of Funko and its licensors product-related trade secrets and licensed intellectual property from unauthorized distribution
  • Maintain the roadmap to deploy information security controls (process and technology) to mitigate risk scenarios associated with licensing intellectual property
  • Maintain relationships with major entertainment licensors’ security and legal teams to ensure aligned protection strategies
  • Establish and maintain relationships with 3rd party affiliates in connection with enforcement activities
  • Support continuous improvement of safe selling techniques and processes with a focus on growing revenue
  • Maintain security controls for protecting trade secrets and confidential data, including digital assets, throughout the product life cycle
  • Maintain technical solutions to prevent unauthorized distribution of licensor and other confidential data
  • Coordinate with IT and Information Security teams to deploy technology solutions that mitigate licensing-related risks
  • Develop educational materials for employees, vendors and other key stakeholders on proper handling of licensed assets
What we offer
What we offer
  • Competitive compensation package with full benefits
  • 401(K) plan with matching contributions from the company
  • Creative work environment
  • May be eligible for additional discretionary bonuses/incentives, and restricted stock units
  • Fulltime
Read More
Arrow Right

Sr. Security Operations Engineer

As a Sr. Security Engineer, you will be responsible for protecting the organizat...
Location
Location
United States , West Point
Salary
Salary:
84410.00 - 129987.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Information Systems, or related field, or equivalent experience and certifications
  • Ability to script using Python
  • 7+ years of experience in Security Engineering, including planning and operations
  • Advanced knowledge of security technologies in medium to complex computing environments
  • Hands-on experience with multiple enterprise security technologies (e.g., firewalls, VPNs, intrusion detection/prevention, endpoint security)
  • Strong understanding of server/network architecture and core networking concepts (e.g., routing, DNS, DHCP)
Job Responsibility
Job Responsibility
  • Design and Deploy Security Solutions: Build, test, and implement new security technologies, including creating operational manuals and runbooks
  • Operate and Optimize Security Systems: Maintain and improve existing security tools such as DLP, Antivirus, IPS/IDS, and Endpoint Protection, while automating monitoring and enforcement processes
  • Conduct Risk Assessments and Incident Response: Lead or support technical risk evaluations and respond to security incidents, ensuring thorough remediation and reporting
  • Collaborate and Advise: Work with internal and external stakeholders to identify security needs, recommend solutions, and stay current with evolving technologies
  • Monitor and Report: Continuously monitor infrastructure for threats, produce security reports for senior leadership, and implement changes following established procedures
  • Fulltime
Read More
Arrow Right

Sr. Director, Information Security Officer (Global Payment Networks)

As Senior Director, Information Security Officer, you will work with the busines...
Location
Location
United States , McLean; Richmond; New York; Plano; Chicago
Salary
Salary:
286200.00 - 392000.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree
  • At least 9 years of experience in Information Security
  • At least 7 years of experience in people management
  • At least 5 years of experience with cyber policies, standards, and procedures
  • At least 5 years of experience in securing public cloud environments and services (AWS, GCP, Azure)
Job Responsibility
Job Responsibility
  • Be a leader at a premiere technology and financial services company
  • Lead a team of Product Security advisory professionals, responsible for Divisional cyber strategy integration and execution, identification and management of risk for top business initiatives and technology platforms, threat and vulnerability management, incident management, supply chain cyber risk management, cyber risk oversight and reporting
  • Deliver Cyber agenda and integration of Information Security within business objectives for line of business area
  • Serve as the central point of contact for your line of business technology executives into Capital One’s Cyber risk management priorities
  • Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats
  • Provide security expertise on prioritizing and managing information security risks and initiatives
  • Escalate and manage cyber security risk
  • Provide regular updates to executive leadership with your line of business on the overall information security health and risk environment
  • Work with business leadership to anticipate their objectives and needs to better serve them
  • Be an advocate for security and an advocate for business and digital innovation
What we offer
What we offer
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Fulltime
Read More
Arrow Right

Sr. Risk Operations Analyst

The Risk Operations Senior Analyst plays a critical role within the Integrated R...
Location
Location
United States , Irvine
Salary
Salary:
120000.00 - 170000.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Technology Risk, Cyber Risk, GRC, or IT Risk Management
  • Hands-on experience running technology risk assessments, issue management, exception processes and maintaining control libraries, policies, and standards
  • Familiarity with GRC platforms
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer science or a related field
  • Strong knowledge of technology control frameworks (e.g., NIST CSF/800-53, ISO 27001, CIS)
  • Proven ability to create risk dashboards and executive-level reporting
  • Strong analytical, documentation, and process design skills
  • Excellent stakeholder management and communication skills
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Maintain and evolve the enterprise technology control library, ensuring alignment with internal policies, standards, and external frameworks
  • Own the lifecycle management of technology risk policies and standards, including updates, reviews, approvals, and communications
  • Ensure controls, policies, and standards are clearly mapped to regulatory, legal, and business requirements
  • Run and continuously improve core Risk Operations processes, including: Technology Risk Assessments, Risk Issue Management, Risk Exception Management
  • Ensure risk processes are executed consistently, on time, and in accordance with defined methodologies
  • Act as a subject matter expert for risk process guidance to technology, security, and business teams
  • Design, build, and maintain risk dashboards and reporting
  • Translate risk data into meaningful insights for senior leadership, customers and risk committees
  • Ensure accuracy, completeness, and audit-readiness of risk data across systems
  • Partner closely with Customers, Senior and Executive Leaders, Legal and other groups, to drive timely remediation and risk ownership
  • Fulltime
Read More
Arrow Right

Sr Director of Information Security

We are looking for an experienced and strategic leader to oversee information se...
Location
Location
United States , Emeryville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 15 years of experience in information security, risk management, or enterprise IT
  • At least 7 years of leadership experience managing security teams and vendor ecosystems
  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field preferred
  • Strong expertise in IT strategy and executive leadership
  • Proficiency in advanced cybersecurity systems, including Cisco ASA Firewall and threat detection
  • Familiarity with Agile Scrum methodologies and disaster recovery planning
  • CISSP certification or equivalent credentials
  • Proven track record in incident response and mitigating security risks
Job Responsibility
Job Responsibility
  • Develop and execute a comprehensive information security strategy aligned with organizational goals
  • Lead and mentor a team of security experts, fostering growth and collaboration
  • Oversee the implementation of advanced cybersecurity measures to protect sensitive data and systems
  • Manage vendor relationships and evaluate third-party security solutions
  • Monitor and respond to security incidents, ensuring timely resolution and prevention of future threats
  • Establish and maintain disaster recovery and business continuity plans
  • Ensure compliance with regulatory standards and industry best practices
  • Collaborate with executive leadership to align security initiatives with business objectives
  • Conduct regular risk assessments and implement mitigations to address vulnerabilities
  • Stay informed about emerging threats and technologies to proactively enhance security measures
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right

Infosec Architect

A remote Infosec Architect contractor is needed to work with IT partners to unde...
Location
Location
United States , Remote
Salary
Salary:
Not provided
revelit.com Logo
Revel IT
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma or equivalent experience in related field
  • A minimum of 5-8 years of prior experience in a similar or related role (an equivalent combination of experience and education may be considered)
  • At least 3+ years exposure with Amazon Web Services (AWS), Microsoft Azure Experience with architecting multi-cloud and/or hybrid-cloud environments
  • Must have experience working across multiple large scale cloud providers, including AWS, Azure, etc.
  • Must be experienced in creating a strategic cyber security technology direction, aligning it with tactical activities, and communicating plans broadly across the organization
  • Experience in analyzing cyber security risks and architecting security solutions
  • Proven knowledge of cloud services and distributed system architecture
  • Create secure patterns to simplify secure application migrations to cloud environments
  • Communication, Cyber Controls expertise, Security Architecture and design
  • PCI compliance, audit background, IT Engineering
Job Responsibility
Job Responsibility
  • Security Architecture Development and Maintenance
  • Assists the Sr. and Principal Architects with the creation of security designs and frameworks for technology systems
  • Monitors security intelligence sources for emerging industry security technologies, technology issues, regulatory issues and practices
  • Provides oversight of new development efforts to ensure adherence to security policies, standards, and reference architectures
  • Actively participates in decisioning processes related to adoption of new hardware and software technologies
  • Provides advisory services as needed to information security teams
  • Utilizes planning and organization tools to develop project/action plans
  • Meets deliverable deadlines as directed
  • Information Security Strategy
  • Assists the Principal and Sr. Information Security Architects with the development of the annual Information Security Strategy. This includes strategy development, formalized road map documentation, and continued maintenance
Read More
Arrow Right

Chief Country Compliance Officer Sr Mgr

Oversees the Citi Compliance Risk Management Program for a medium to smaller fra...
Location
Location
Bahamas , Nassau
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Credibility as a subject matter expert and experience of dealing with issues that have a high impact at all levels of the organization
  • Experience of working with key country level regulators and industry associations
  • Knowledge of local regulatory requirements and obligations and the ability to identify emerging compliance issues and themes
  • An ability to influence senior business leaders on all compliance risk-related matters affecting the business. The individual should have the ability to independently challenge, when needed, while at the same time being supportive and solution-based and not being perceived as obstructive
  • An ability to be “hands on” and “in the trenches” with the direct team, while also bringing a sense of strategic vision and a global sensibility to the function
  • Ability to navigate and negotiate through conflicting demands to maintain focus on priority objectives while ensuring key stakeholders’ needs are met
  • Strong team leadership, communication, interpersonal and management skills, with a track record of leading through change and the ability to effectively communicate the strategic vision to various stakeholder groups
  • Effective negotiation skills, a proactive and “no surprises” approach in communicating issues and strength in sustaining independent views. Strong presentation and relationship management and influencing skills are essential
  • The ability to thrive and execute in a complex, highly matrixed, global environment
  • Bachelor’s Degree highly preferred or relevant, equivalent experience. Preference for post graduate degree and/or recognized professional qualifications where applicable. Professional qualifications may include: CRMC or equivalent, CPA, ACA, CIA, CFA, ACAMS, etc. strong technical knowledge of compliance regulations and requirements, experience within a highly complex, global financial institution, regulator or related industry participant.
Job Responsibility
Job Responsibility
  • Annual Country Compliance Plan: Preparing, obtaining approval and successfully completing an annual compliance risk management plan, in accordance with the global template and content and presentation requirements, setting out how compliance risk will be managed within the jurisdiction and its constituent parts, and the role to be played by ICRM in order to achieve the plan. Identification of the jurisdictional requirements, accountabilities and the process ownership and monitoring and testing ownership, as well as the determination of suitable staffing, hours required and secured budget in order to achieve the state of compliance within risk appetite will be set out in the plan, which will be reviewed quarterly with the jurisdictional CCC and ICRM, as well as any applicable legal entity, as well as where required by applicable regulatory agencies. The annual country compliance plan must take into consideration the applicable compliance risk assessments and MCAs appropriate to the jurisdiction and its activities.
  • State of Compliance Reporting: Preparing quarterly, in accordance with the approved global format, and in adherence to all established requirements for the State of Compliance reporting. The State of Compliance report will be presented to the appropriate CCC, BRCC and legal entity Board or Board Audit Committee, or other such Board committee required within the jurisdiction.
  • Enhancing Governance: Providing a valued interactive program of support and compliance risk management services covering the assessment and reporting of Key Compliance Risks across products, services, functions, legal entities, service centers and the jurisdiction as a whole. Providing stakeholders with insight and practical solutions as well as credible challenge to improve the ethical control culture, and conduct risk environment. Timely reporting of significant local regulatory issues to local, overseas, regional, and global stakeholders. Same-day escalation of regulatory reports received. Maintaining on-going assessment and reporting of the State of Compliance through the relevant corporate governance committees such as country audit committee(s) and/or subsidiary board(s), country coordinating committee and business risk management committee, and other management body(ies). Key Activities Compliance Risk Culture:
  • Stakeholder Support and Relationships: Developing senior management relationships, including with legal entity management focus, inclusive of non-executive directors (where they exist in the jurisdiction), and the CCO as well as product functional and entity/service center line management. Informing senior management and directors of subsidiary boards, and the country/business management of significant compliance matters that require their attention or action. Proactively anticipate and help the business and functions plan for changes in the compliance and regulatory environment in the country. Provide support to compliance programs and country/business management on policy interpretation and “gray area” exposures. Build and maintain strong relationships with other functional leads, including Legal, Risk Management, including Operational Risk Management, and Internal Audit to create a supportive and seamless compliance and ethical control culture and an appropriate conduct risk environment. Key Activities Processes and Activities:
  • Regulatory Management and Coordination: Supporting the Citi Country Officer (CCO) in the management and development of regulatory relationships. Coordinating as the key interface with regulators on compliance risk management issues and supervisory exam management matters. Providing same day notification of regulator correspondence to Citi Compliance Officer, Regulatory Liaison and Exam Management CCO and ICRM COO. Providing leadership, coordination and regular interaction with the [insert country] authorities on behalf of ICRM and the Citi franchise. Record regulator correspondence and minutes of regulator meetings on Citi system in line with the Global Regulatory Exam Management Governance and Process Standards. Ensuring prompt recording of, responses to, and escalation of regulatory queries, notices of violations and breaches, any forbearance, and concerns identified. Deliver to regulators and supervisors a valued interactive program of support and assurance in accordance with requirements and appropriate expectations on compliance issues, trends, themes, root cases and impacts relating to governance, regulatory risk management and internal control issues. The overall objective is to earn the regulator’s trust and to establish a strong, independent and professional regulatory relationship across the franchise.
  • Regulatory Inventory: Ensuring prompt identification, logging in, evaluation and formulation of a plan to address requirements arising from new and amended laws, regulations, rules and other requirements and expectations from regulatory and enforcement authorities.
  • Regulatory Change Management and Controls: Ensuring that the regulatory change management requirements and processes, along with the regulatory control framework for existing requirements, are effectively operating within the country with respect to the identification, impact assessment and implementation of all applicable laws, regulations, rules and related processes, controls and reporting that impact Citi activities in the jurisdiction.
  • Anti-Money Laundering Compliance Risk Management (ACRM): Providing strategic direction, oversight, coordination and cooperation in respect of the country’s Anti-Money Laundering compliance risk management program. Partner closely and with the Head of ACRM to ensure a strong linkage between ICRM and ACRM.
  • Independent Compliance Risk Management (Program and Product/Service/Function focused*): Providing direction and oversight in supporting the ICRM teams in the country related to local requirements and the applicable extraterritorial laws, regulations, relevant Citi policies, standards, and global procedures. Deliver consistent application of program procedures and be accountable to program owners consistent with the ICRM methodology and CRM Framework. *Programs include but are not limited to: Sanctions
  • Anti Bribery
  • Fulltime
Read More
Arrow Right

Sr. Information Security Administrator

Get ready to take your place on n11, an open market platform has made valuable c...
Location
Location
Turkey , Istanbul
Salary
Salary:
Not provided
ariteknokent.com.tr Logo
İTÜ ARI Teknokent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Minimum 4 years of experience in application security, vulnerability management and information security
  • Experience with SAST, DAST, SCA, IAST, IaC, SBOMs and Secret Management
  • Expertise in utilizing various security tools such as Burp Suite, OWASP ZAP, Acunetix, Fortify, and Checkmarx, along with vulnerability scanners
  • Experience with security requirements for APIs. (SOAP, REST, GraphQL etc.)
  • Experience with Manuel Source Code Analysis and Penetration Testing of Mobile and Web Applications
  • Experience with container security, such as Docker and Kubernetes
  • Familiarity with “secure by design” and “shift left” security principles
  • Strong knowledge of software security risks and threats (OWASP top 10)
  • Solid understanding of web-based application technologies, web services/APIs, web-based authentication/single sign-on protocol and technologies
Job Responsibility
Job Responsibility
  • Perform manual and automated penetration testing on applications to identify and exploit vulnerabilities
  • Integrate and automate application security testing tools (SAST, DAST, SCA,IaC, Network Scans)
  • Devise, implement, and monitor vulnerability response processes to efficiently remediate critical and zero-day vulnerabilities
  • Assess potential security vulnerabilities within our applications, and work with development teams to ensure remediation in our established SLAs
  • Provide training to development teams on secure coding practices and awareness of emerging security threats
  • Stay abreast of emerging application security trends and threats, researching new attack vectors to update vulnerability management strategies accordingly
  • Utilize scripting languages (Python, Ruby, Bash, etc.) to build automation tools as needed
  • Manage DLP, SIEM, PAM, EDR, IAM, DAM , SCC , Mail Gateway Security Tools
  • Improve General Security of Networks , Cloud and Systems
  • Provide Single Point of Contract for the General information Security
  • Fulltime
Read More
Arrow Right