Director Vulnerability & GRC

  • Posted: 10/05/2024
  • Salary: Competitive
  • Location: Midlothian, Virginia, United States
  • Job Type: Permanent/Fixed Term
An impressive national health system are looking for an experience Director of Vulnerability and GRC to join the team. As the Vulnerability Management and GRC Leader, you will manage and direct the vulnerability management and GRC strategy across the enterprise at a global level. This includes all of the strategy, the policies, as well as scanning and monitoring. Additionally, you will responsible for risk posture, tracking remediation and patch management.

 Responsibilities:
  • Develop and execute a comprehensive vulnerability management strategy aligned with organizational cybersecurity objectives and risk tolerance.
  • Create policies, procedures and standards, related to vulnerability management, assessment, remediation, governance risk and compliance.
  • Oversee day-to-day operations of the Vulnerability Management and GRC capability, managing escalations, collaborating with tools and vulnerability management remediation teams.
  • Integrate the vulnerability management program with the larger security operations organization including incident response, threat intelligence, and penetration testing initiatives to gain a holistic view of actively exploited threats and internal vulnerabilities. Work collectively to inform and drive security uplift strategy.
 Qualifications:
  • At least 6-7 years of experience in Vulnerability Management Operations, with at least three years in a leadership role.
  • At least 3 years of experience in Governance Risk and Compliance
  • Experience performing and managing application and network penetration tests
  • Deep understanding of IT and Cybersecurity technologies, with knowledge extending to concepts peripheral to network security.
  • Proven track-record of automating security processes.
  • Hands-on experience with asset management, vulnerability management, and patch management methodologies and tools.
  • Bachelor's degree in information technology, information security, or a related field.

 
Joshua Serlin Senior Partner

Apply for this role