Overview

The Vulnerability Management Lead will work within the Global Cyber Security team to develop and mature a continuous vulnerability management program within our organization. This role is responsible for leading efforts to identify, assess, report, and monitor vulnerability data and making risk-based recommendations based on analysis. This individual will partner with threat intelligence, incident response, governance, and the greater IT technical teams within Element to ensure remediation priorities are communicated and executed.

Responsibilities

• Develop the Vulnerability Management strategy and program for our organization

• Act as a champion for vulnerability management and information security including broadening awareness and use of the team’s services, education of security best practices and integration with other business areas

• Functionally manage and configure Nessus vulnerability scanning tool to ensure scans are valid

• Drive actionable metrics and reporting for operations and leadership transparency

• Provide prompt attention and visibility into risks, vulnerabilities, and issues serving as an escalation path for team member effectiveness

• Closely support and collaborate with Security Engineering and technical teams

• Develop enterprise policy and technical standards with specific regard to vulnerability management and secure configuration

• Assess the potential impact of identified vulnerabilities specific to our environment based on attack surface, likelihood, and other technical factors to determine overall applicable risk

• Identify and validate potential technical or non-technical compensating controls or mitigations that reduce risk or impact of vulnerabilities to an acceptable level in lieu of remediation

• Build strong partnerships with technical teams to promote best practices for managing vulnerabilities

Skills / Qualifications

• Demonstrated experience in vulnerability management as a functional lead or someone that has experience developing a vulnerability management program

• Technical experience or understanding that enables the ability to make recommendations for re-casting, mitigating, and accepting risk.

• Familiar with industry standard security best practices and vulnerability management processes including compliance reporting

• Demonstrated ability to participate in cross functional teams for a large organization, including offsite, remote, and offshore resources

• Excel at prioritizing work and other demands for self and team including making risk-based decisions about remediation recommendations

• Ability to define, communicate, and execute on a vision and strategy

• Ability to effectively communicate with technical and non-technical resources

• Self-directed, works with minimal guidance, and recognizes when guidance needed

• Advanced experience with vulnerability scanning tools and other security testing tools

#LI-SL1

Company Overview

Element is one of the fastest growing testing, inspection and certification businesses in the world. Globally we have more than 9,000 brilliant minds operating from 270 sites across 30 countries. Together we share an ambitious purpose to ‘Make tomorrow safer than today’.

When failure in use is not an option, we help customers make certain that their products, materials, processes and services are safe, compliant and fit for purpose. From early R&D, through complex regulatory approvals and into production, our global laboratory network of scientists, engineers, and technologists support customers to achieve assurance over product quality, sustainable outcomes, and market access.

While we are proud of our global reach, working at Element feels like being part of a smaller company. We empower you to take charge of your career, and reward excellence and integrity with growth and development.

Industries across the world depend on our care, attention to detail and the absolute accuracy of our work. The role we have to play in creating a safer world is much bigger than our organization.

Diversity Statement

At Element, we always take pride in putting our people first. We are an equal opportunity employer that recognizes diversity and inclusion as fundamental to our Vision of becoming “the world’s most trusted testing partner”.

All suitably qualified candidates will receive consideration for employment on the basis of objective work related criteria and without regard for the following: age, disability, ethnic origin, gender, marital status, race, religion, responsibility of dependents, sexual orientation, or gender identity or other characteristics in accordance with the applicable governing laws or other characteristics in accordance with the applicable governing laws.

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)

“If you need an accommodation filling out an application, or applying to a job, please email Recruitment@element.com ”

Job Locations US-OH-Blue Ash | Work From Your Own Home

ID 2024-14742