Senior Manager, Threat and Vulnerability Management

Organization:

Circle

Location:

Washington, DC

Description:

What you’ll be responsible for:

Circle is looking for a passionate Security Leader with an expertise in Threat and Vulnerability Management, deep understanding of different Cloud based Infrastructure and a Mac based fleet of devices. You’ll be part of the Security Engineering team and closely partner with the Engineering, Infrastructure, and IT teams responsible for supporting our cloud operations, software development, fleet of devices and endpoints.

What you'll work on:

• Execute and enhance Circle’s Threat and Vulnerability Management strategy, implementation, and operationalization
• Actively partner with our Engineering, Infrastructure, and IT teams on the secure development of software, identifying and triaging vulnerabilities, providing remediation guidance, and maintaining SLAs
• Integrate into our current Threat and Vulnerability Management program and perform comprehensive risk assessments
• Recommend and validate Security controls and improvements across our infrastructure and enterprise stack
• Own and build relationships with key stakeholders such as cross-functional leaders and internal auditors
• Produce data-based reports on technology risk for senior management
• Drive continuous improvement in the tech stack

Please see complete job description online.

Qualifications:

What you’ll bring to Circle:

• Creative and flexible solutioning as you partner with engineering teams
• Expertise with Cloud vulnerability scanning solutions like Wiz, Prisma Cloud, Qualys, or Amazon Inspector is required.
• Hands-on technical and coding experience with developing, deploying, and integrating vulnerability scanning solutions with technologies such as Terraform, Github, Jira, Python and others, in context of a mid to large Enterprise
• Enterprise program management and reporting with experience setting OKRs and creating KRIs
• Expertise with Cloud Infrastructure in AWS is required, GCP and/or Azure is preferred
• Extensive knowledge of containerization, orchestration and cloud scale solutions
• Expertise with CICD within the SDLC process
• Expertise with Slack, Apple MacOS and GSuite is required.
• Familiarity with CVSS, EPSS, threat intelligence, and performing risk analysis
• Enthusiasm for automation, scalable and reproducible security practices
• Self-motivated and creative problem-solver able to work independently
• Proficiency in managing multiple competing priorities and use good judgment to establish order or priorities on the fly for themselves and their team.
• Ability to influence and expediently resolve issues and achieve organizational objectives
• The ability to design and operate controls that are easy to test and audit
• Experience working in financial services or financial technology desired
• Advanced degree in computer science, or related fields strongly preferred.
• Strong ability to work collaboratively across teams during high-stress situations.
• An understanding of standards such as ISO 27001/27002 and the NIST Cybersecurity Framework desirable
• 8+ years of total experience in cybersecurity with at least 4+ years managing technical teams
• Certified Cloud Security Professional (CCSP) and familiarity with blockchain/web3 development is preferred.

  Compensation:

  How to Apply:

  Apply online

  URL:

  https://www.circle.com/en/careers-detail/senior-manager-threat-and-vulnerability-management

  Posted:

  12-Sep-2024