Lead IT Portfolio and Vulnerability Management

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field required.
• Minimum 5 years of experience in IT security, vulnerability management, or related discipline.
• Demonstrated experience leading vulnerability management programs in large, complex environments.
• Experience with vulnerability assessment tools, remediation processes, and risk management.
• 5+ years project management/portfolio management
• 5+ years in Information Technology
• Knowledge of ITIL and other frameworks
• Exposure to Systems Administration
• Exposure to Security Administration
• Understanding and knowledge of SDLC and Development practices
• Proficiency in vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7).
• Proficiency in project/portfolio management tools (e.g., WorkFront, MS Project, Jira, Tenable, Rapid7)
• Strong understanding of IT infrastructure, applications, and cloud environments.
• Knowledge of regulatory frameworks (e.g., PCI DSS, GDPR, SOX).
• Ability to analyze and interpret data and provide actionable recommendations.
• Strategic thinker with strong problem-solving skills.
• Effective communicator with ability to influence and collaborate across all levels.
• Demonstrated leadership in driving cross-functional initiatives.
• Commitment to continuous learning and professional development.

Nice To Haves

• Advanced degree or relevant certifications (e.g., CISSP, CISM, CEH, PMI) preferred.
• Certification Desired: Project Management (PMI), Development

Responsibilities

• Leads the development and implementation of enterprise-wide vulnerability management strategies and frameworks.
• Coordinates vulnerability assessments, scans, and remediation activities across multiple business units and technology platforms.
• Partners with IT, security, and business stakeholders to prioritize and address critical vulnerabilities.
• Develops and maintains metrics, dashboards, and reporting to track vulnerability status and progress.
• Guides the adoption of best practices and innovative solutions for vulnerability detection and mitigation.
• Ensures compliance with regulatory requirements and internal security policies.
• Coordination and management of critical infrastructure operational gaps to bring closure and improvement in IO
• Management and coordination of key operations portfolio programs to align with standards, policies, and resources to transform to modern and efficient models
• Identify deficiencies and coordinate remediation plan for IO teams
• Coordination and direction of Vulnerability Management with Security, Operations, Product Owners and other stakeholders
• Provides subject matter expertise and mentorship to team members and stakeholders.
• Collaborates with external vendors and partners to enhance vulnerability management capabilities.
• Drives continuous improvement initiatives to strengthen the organization’s security posture.
• Communicates risk and remediation strategies to leadership in a clear and actionable manner.