Vulnerability Manager

Job Location US-TX-Richardson Operations Center
ID
2018-3341
Location: Address
2350 Lakeside Blvd
Category
Information Technology

Overview

At Texas Capital Bank, we are driven by a single-minded and unwavering mission: to serve business and the individuals who run them. We use a consultative approach and innovative technologies to develop new ideas that give the bank and our clients a competitive advantage. We partner with our customers to push the boundaries of what’s possible—together.

Headquartered in Dallas, Texas Capital Bank has offices in Austin, Fort Worth, Houston, Richardson, Plano and San Antonio, and we serve clients in a variety of industries from coast-to-coast.

We are on the Forbes Best Banks in America list, and were named a top place to work by The Dallas Morning News, Houston Chronicle and San Antonio Express-News. For further information, please visit us at www.texascapitalbank.com.

 

The Vulnerability Manager is responsible for identifying, categorizing, assigning, tracking, and helping to remediate vulnerabilities for all IT teams. The manager is also responsible for proactively protecting information assets from unauthorized or inappropriate access, business disruptions through proper identification, regular reporting, and escalation of vulnerabilities. In addition to working closely with IT teams, interaction with business teams will be required.  The manager will provide oversight for a team responsible for vulnerability and patch management.

Responsibilities

  • Responsible for defining and maintaining a formal Vulnerability Management Program and framework that defines the vulnerability priorities aligned with business criticality.
  • Provide governance, guidance, and setting priorities for risk-based vulnerability management, mitigation and remediation
  • Responsible for researching and analyzing vulnerabilities, identifying relevant threats, corrective action recommendations, summarizing and reporting results.
  • Configure regular reports to reveal vulnerabilities in order for team to take appropriate action to remediate impacted assets.
  • Tracking and reporting status of vulnerability remediation.
  • Assists in the development of baseline security configurations for operating systems, applications, and networking equipment.
  • Use tools (primarily Nexpose & SCCM) to perform infrastructure vulnerability assessments, identify and resolve any false positive findings in assessment results.
  • Analyze results; identify patch changes and configuration changes to be applied.
  • Address vulnerabilities including system patching, deployment of specialized controls, code or infrastructure changes, and changes in build engineering processes.
  • Manage tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology partners and support teams.
  • Manages team of individuals responsible for vulnerability management.

 

Qualifications

  • Bachelors’ Degree preferred, Computer Science, Security or equivalent educational or professional experience and/or qualifications required
  • Advanced understanding of operating system and application security, administration, and debugging required
  • 5 years of experience in a Vulnerability Management or Information Security role required
  • Advanced understanding of technical information security concepts related to threat landscapes required
  • Certified Information Systems Security Professional (CISSP) preferred
  • Experience with vulnerability scanners, vulnerability management systems, patch management, and host based security systems
  • Experience with CMDB
  • Good working knowledge of Nexpose, WSUS and SCCM is preferred
  • Understanding of controls: access control, auditing, authentication, encryption, integrity, and application security
  • Advanced understanding of operating systems such as Windows environments, Active Directory, VPN systems, encryption schemas and algorithms, various authorization and authentication mechanisms/software, network monitoring and sniffing, TCP/IP networks and vulnerability and threat management tools
  • Advanced working knowledge of vulnerability assessment tools (primarily Nexpose)
  • Provides guidance and advice related to all vulnerability management issues
  • Demonstrable conceptual, analytical and innovative problem-solving and evaluative skills, an ability to conduct independent research and analysis, identifying issues, formulating options, and making conclusions and recommendations
  • Demonstrated ability to recognize, interpret, and communicate vulnerability management information
  • Functional business knowledge

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Don’t see the perfect opportunity? Connect with us and we will reach out if a new job opening matches your background and interests.