Management h1.location_city

Join Datavant, a pioneering data collaboration platform dedicated to transforming healthcare through secure and accessible health data. As part of our passionate team, you'll contribute to making critical data solutions available to providers, health plans, researchers, and life sciences companies.

Your Role

As the Lead Vulnerability Management Specialist, you will spearhead a talented team focused on minimizing vulnerabilities and reducing attack surface exposure in our applications and infrastructure. Your expertise will help define innovative strategies and frameworks for managing risks, while collaborating seamlessly with engineers and cross-functional leaders.

Key Responsibilities

• Refine and enhance Datavant's shared responsibility framework for vulnerability and exposure management.
• Unify infrastructure and application security detection efforts to optimize workflows.
• Simplify and automate the onboarding and integration of scanning technologies.
• Provide technical engineering mentorship and conduct code reviews for team members.
• Develop and manage reporting mechanisms to track our vulnerability exposure posture and enhance risk reduction efforts.
• Integrate vulnerability management practices into our secure Software Development Life Cycle (SDLC).
• Deploy solutions to prioritize vulnerabilities and misconfigurations effectively.
• Collaborate with senior security leadership to strengthen our exposure management program.
• Engage with government agencies on vulnerability management matters for our FedRAMP compliance.
• Stay vigilant about risks while continuously expanding your knowledge in risk management; leverage your engineering mindset for success.
• Lead initiatives aimed at enhancing security throughout the organization, acting as a technical expert and collaborator.

Qualifications for Success

• A proven track record in leading vulnerability management programs and mentoring technical teams.
• Strong insights into effective vulnerability and exposure management practices.
• Experience with vulnerability aggregation or Attack Surface Management (ASPM) platforms.
• Proficient in vulnerability identification techniques, including penetration testing, code scanning (SCA, SAST), and cloud/container analysis (CNAPP).
• Extensive operational experience with Wiz.
• Familiarity with attack surface management tools.
• Solid engineering background with hands-on experience in automating and integrating systems through software development.
• Exceptional communication and collaboration skills to influence diverse teams and stakeholders.
• Minimum of 5 years of experience in vulnerability management, with at least 3 years in a leadership capacity.
• Experience in regulated industries such as healthcare, with knowledge of frameworks like HIPAA, HITRUST, and SOC 2 is preferred.

Standout Attributes

• A background in software engineering and automation.
• Hands-on technical skills that contribute directly to engineering efforts.
• Experience with AI-assisted software development tools.
• Recent experience in a FedRAMP environment.

Datavant is committed to fostering a diverse team where everyone has the opportunity to thrive. We are proud to be an Equal Employment Opportunity employer and consider all qualified applicants without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

The estimated total cash compensation for this position ranges from $224,000 to $280,000 USD. Newly hired employees may need to undergo health screenings and provide vaccination proof as required by clients. Exemption requests will be reviewed on a case-by-case basis.