Overview

Join to apply for the Vulnerability Management Manager role at ION.

The Vulnerability Management Manager is a global role within ION’s central services division and will support the Group Security strategy and operational excellence through the identification, mitigation and remediation of information security vulnerabilities, misconfigurations and risks to the business. This role reports to the Global Head of IT Security, who reports to the Group Chief Information Security Officer (CISO).

Responsibilities

As a member of the ION Security team, you will build and lead a team of Security professionals specialising in Vulnerability Management, manage partners and technology vendor deliverables, and own the strategy to deliver a world-class Vulnerability Management program. The team will regularly perform discovery scanning, risk/exposure assessments, mitigation support activities, continuous validation assessments, and lessons learned workshops and improvement projects to continuously improve processes across Group Security and all Verticals.

Key responsibilities include:

• Work out-of-hours to support 24x7 globally coordinated operation (as needed).
• Ensure the team has clear objectives and development plans.
• Align the team’s objectives to OKRs.
• Be the escalation point for security tooling issues and critical security breaches.
• Responsible for team development, upskilling and mentoring.

Protect and Defend

• Manage Vulnerability Management tooling to ensure coverage, availability and efficacy; drive improvements and feature enhancements to ensure ROI.

Operate and Maintain

• Configure, tune, maintain and operate key vulnerability management controls.
• Management reporting – real-time metrics and scheduled reports.
• Drive process/procedure changes accordingly.
• Ensure quality of ticketing and runbook maintenance.
• Cultivate and maintain strong vendor relationships.
• Have an attitude of continuous improvement.
• Participate in CAB, Tool review or Architecture Review Boards (ARBs).

As a member of the ION IT Security Team

• Execute ongoing, operational BAU tasks to meet KPIs and SLAs, and deliver security projects in line with priorities and deadlines.
• Stay current with the latest security news, threats, intelligence, tactics, techniques, and vulnerabilities; research and analyze to determine exposure.
• Assist and/or lead efforts to isolate, contain, respond to, and recover from security incidents.
• Identify, review, prioritize, plan, coordinate, and follow-up on remediation of vulnerabilities.
• Define, document, and follow approved processes for all responsibilities; create and maintain documentation for systems.
• Review vulnerability management systems, configurations, and processes to ensure compliance with ION policy, client requirements, audits, regulations, and industry best practices; provide recommendations to IT and other teams.

Experience, Skills and Qualifications

• Degree/diploma/certifications in a technology-related field; desirable certifications include Security+, CCSP, CEH, GCIH, GMON, CASP, or CISSP.
• 10 years’ experience in Vulnerability Management within large organizations with at least 5 years in a senior leadership role.
• Excellent track record of building and leading a Vulnerability Management program on a global scale with knowledge on vulnerability assessments, remediation and mitigation activities.
• Technical Security/Engineering/Compliance background with a track record of building and running global teams.
• Experience building risk management frameworks and applying them to vulnerability management programs.
• Strong technical expertise in prioritizing vulnerabilities and misconfigurations and translating these into risks.
• Excellent knowledge of VM frameworks such as NIST/SANS.

About us

We’re a diverse group of visionary innovators who provide trading and workflow automation software, high-value analytics, and strategic consulting to corporations, central banks, financial institutions, and governments. Founded in 1999, we’ve achieved tremendous growth by bringing together some of the best financial technology companies in the world.

ION is a rapidly expanding and dynamic group with 13,000 employees and offices in more than 40 cities around the globe. Our global footprint, cutting edge products, and over 40,000 customers worldwide provide an unparalleled career experience for those who share our vision.

ION is committed to maintaining a supportive and inclusive environment for people with diverse backgrounds and experiences. We respect the varied identities, abilities, cultures, and traditions of the individuals who comprise our organization and recognize the value that different backgrounds and points of view bring to our business. ION adheres to an equal employment opportunity policy that prohibits discriminatory practices or harassment against applicants or employees based on any legally impermissible factor.

EEO and compliance

ION is an equal opportunity employer. We are committed to providing a diverse and inclusive workplace. We do not discriminate on the basis of race, religion, color, national origin, sex, gender identity, sexual orientation, age, disability, veteran status, or any other protected characteristic.