Talent.com
Expert (Staff) Vulnerability Management Engineer
Expert (Staff) Vulnerability Management EngineerDelta Dental of California • San Francisco, CA, United States
[error_messages.no_longer_accepting]
Expert (Staff) Vulnerability Management Engineer

Expert (Staff) Vulnerability Management Engineer

Delta Dental of California • San Francisco, CA, United States
[job_card.30_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

JOB DESCRIPTION

  • This position does not offer work visa sponsorship

We are seeking an Expert (Staff) Vulnerability Management Engineer to join our Enterprise Vulnerability Management team. This role is responsible for planning, developing, and implementing enterprise-scale vulnerability management solutions to meet current and emerging security needs. You will proactively identify and resolve complex information security challenges, while designing, implementing, and maintaining a world-class vulnerability management program. Key focus areas include strategic planning, capability assessment, process development and refinement, technology capability analysis, and the implementation and continuous improvement of process support tools.

RESPONSIBILITIES

Vulnerability Management Strategic Planning, Design & Implementation :

  • Performs vulnerability management capability assessments, process development and refinement activities, technology capability assessments, and solution design and implementation projects that ensure the security of the enterprise environment.
  • Leads strategic planning activities informed by capability assessments which holistically address current and future maturity states of vulnerability management capabilities. Builds strong narratives to drive decision-making and educates leadership stakeholders on proposed plans.
  • Serves as a security expert in vulnerability management solutioning, including vulnerability identification, assessment, and validation for CI / CD pipelines, cloud environments, and infrastructure.
  • Engages with enterprise architects, security specialists, technology engineers, and other functional area specialists to ensure that enterprise technologies and security solutions are correctly configured and deployed to sufficiently mitigate identified risks and meet requirements for the enterprise, customers, partners, and vendors.
  • Exercises thought leadership in the creation and maintenance of vulnerability management capabilities, processes, procedures, technologies, and technical capability requirements.

    • Vulnerability Management Operations :

  • Creates and maintains a view of IT assets, related attack surfaces, and emerging vulnerabilities to illustrate the flow of data and associated security threats.
  • Manages the entire lifecycle of vulnerabilities from discovery, triage, advising, remediation, and validation.
  • Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks.
  • Serves as an expert in platform, application, storage, network, virtualization, cloud, and mobile security best practices.
  • Develops leadership-level communications, including board of director and executive metrics, business cases, standards, policies, procedures, architecture design documents, etc.

    • Collaboration :

  • Communicates and interacts effectively with leadership, management, co-workers, internal and external customers, and partners. Communicates strategic planning narratives and design, as well as implementation plans, to both technical and non-technical audiences.
  • Focuses on building stakeholder partnerships and offers support to other contributors within the Technology Org.
  • Contributes to team culture by modeling integrity, inclusivity, accountability, and collaboration.
  • Educates, coaches, and mentors junior team members and expands the team's overall skill sets.

    • QUALIFICATIONS

  • 7+ years of professional experience in Cybersecurity domain with a Bachelor's degree in Computer Science, Information Security, or a related field; an equivalent combination of education and experience will also be considered.
  • 8+ years of combined hands-on cybersecurity and vulnerability management development and implementation work. Experience with a broad exposure to cloud, infrastructure, network, and multi-platform environments.
  • 2+ years of hands-on experience assessing vulnerabilities and using contextual risk to prioritize remediation efforts.
  • 2+ years of experience in responding to zero-day and high-profile vulnerabilities.
  • 2+ years of experience in cybersecurity solution engineering or security service delivery.
  • 2+ years of leadership experience with planning and managing cybersecurity implementations and / or leading a team of technical resources. This role will require the management of several (2 to 4) concurrent large-scale vulnerability management capability development projects.
  • Industry certifications such as CISSP, GSEC, OSCP, or comparable security-related credentials are strongly preferred.

    • Knowledge, Skills, Abilities

    Required :

  • A strong, complete, and working understanding of Microsoft Azure cloud and foundational cloud concepts.
  • A robust understanding of contemporary security theory and application, including the vulnerability lifecycle, scanning methodologies (SAST, DAST, IAST, RASP), exploitation techniques, and attack vectors.
  • Strong understanding of systems development lifecycle to lead multifunctional projects or initiatives.
  • A robust understanding of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques.
  • Excellent written and verbal communication skills (including technical writing).
  • Excellent communication and presentation skills, with the ability to convey technical concepts to diverse audiences and a strong emphasis on listening and understanding stakeholder needs.
  • Ability to develop executive communications and interact with senior leadership.
  • Strong ability to build trust, partnerships, and mutual support across many diverse teams.
  • Strong strategic planning, maturity assessment, analytical and problem-solving skills; ability to examine issues both strategically and analytically.
  • Adaptive and demonstrated ability to learn quickly.
  • Ability to interact well with co-workers and outside contacts.
  • Ability to work collaboratively in a team environment.
  • Ability to work on multiple, simultaneous initiatives and prioritize workload to meet commitments.
  • Self-motivated with a strong sense of urgency.
  • History of and commitment to ethical behavior.

    • Preferred :

  • A strong, complete, and working understanding of key programming languages and frameworks (e.g., Java, Python, JSP, PHP, Node.js, etc.)
  • A strong understanding of cyber threat intelligence competencies (cyber kill chain, diamond model, TTPs).
  • Foundational knowledge of data analytics and visualization tools (e.g., Splunk, Tableau).
  • Knowledge of laws, regulations, and standards relevant to the US Healthcare industry.

    • Base Pay Information

    The national base pay range at the end is a good-faith estimate of what Delta Dental may pay for new hires. Actual pay may vary based on Delta Dental's assessment of the candidate's knowledge, skills, abilities (KSAs), related experience, education, certifications and ability to meet required minimum job qualifications. Other factors impacting pay include prevailing wages in the work location and internal equity.

    Pay Grade 25. $140,700 - $305,000

    ADDITIONAL INFORMATION

    Behind the smile! We are dedicated to safeguarding the health and financial stability of our employees and their loved ones. This commitment extends beyond the workplace to foster personal growth and holistic wellbeing. Our life-changing rewards package includes :

  • Competitive base and incentive pay
  • 401(k) with robust matching and non-matching contributions
  • Rich medical & pharmacy benefits
  • 100% employer-paid dental and vision benefits
  • Holistic wellbeing program with deep financial incentives
  • Generous paid time off plus 12 paid holidays and your birthday off
  • Culture of growth and learning : career development; tuition reimbursement; recognition program
  • Family support : adoption assistance, fertility treatment, child, elder & pet care assistance
  • Social responsibility and volunteer opportunities
  • Employee discount program

    • Fair Chance Ordinances and Criminal Background Considerations

    This position requires that the applicant undergo a background check. Qualified applicants with arrest or conviction records will be considered for employment in accordance with any applicable federal, state or local laws, including, but not limited to, the California Fair Chance Act, the Los Angeles County Fair Chance Ordinance, the City of Los Angeles Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, and / or New York Corrections Law Article 23-A.

    Important Work Authorization Information

    Please note, Delta Dental will not sponsor applicants for work visas for this position.

    #LI-Remote

    ABOUT THE TEAM

    At Delta Dental, we're behind millions of smiles and counting. For over 68 years, we've served our communities by increasing access to affordable, quality care - but that commitment to care extends beyond the people we serve, to the dedicated employees who make those smiles genuine. We've come this far by building fair programs that offer opportunities for advancement, create meaningful connections and improve the lives of our employees and their families. Because we know that when we take exceptional care of each other, we can make a positive impact for all.

    We champion an inspirational workplace through our commitment to trust, service, excellence and innovation. Joining us means working for a company that offers stability and balance, opportunities for leadership at all levels, and a work environment focused on teamwork and camaraderie.

    Discover the smiling faces behind Delta Dental and experience our values and culture in action by connecting with us on social media. Follow Delta Dental Ins. on Facebook and Instagram , #LifeatDDins on Facebook and Instagram , Delta Dental Ins. on Twitter and Delta Dental Ins. on LinkedIn . If you've got an appetite for innovation and want to be a part of a team that's transforming the future of health care, join us!

    Since 1955, we have offered comprehensive, high-quality oral health care benefits to millions of enrollees and built the strongest network of dental providers in the country. The Delta Dental of California network includes affiliates Delta Dental Insurance Company; Delta Dental of Pennsylvania; Delta Dental of New York, Inc.; Delta Dental of the District of Columbia; Delta Dental of Delaware, Inc.; and Delta Dental of West Virginia, providing dental benefits to more than 31 million people across 15 states, the District of Columbia, Puerto Rico and the Virgin Islands.

    The company and its affiliates are part of Delta Dental Plans Association (DDPA), a not-for-profit national association based in Oak Brook, Illinois. Through our national network of Delta Dental companies, we offer dental coverage in all 50 states, Puerto Rico and other U.S. territories. We offer vision coverage through DeltaVision in 15 states and the District of Columbia. Collectively, we deliver benefits to more Americans than any other dental insurance company.

    Delta Dental Ins. is an equal opportunity employer and is committed to providing a professional work environment free from discrimination and harassment. Individuals seeking employment at Delta Dental are considered without regard to race, ethnicity, color, age, sex, religion, national origin, ancestry, pregnancy, sexual orientation, gender identity, gender expression, genetic information, actual or perceived physical or mental disability, registered domestic partner status, caregiver status, marital status, veteran or military status, citizenship status, or any other legally protected category. Delta Dental is committed to providing equal employment opportunities to all employees and applicants for employment. Accordingly, we have adopted and maintain an Equal Employment Opportunity Policy, Harassment-Free Work Environment Policy, and Respectful Workplace policies and will not tolerate violations of these policies.

    Unfortunately, our Delta Dental Enterprise is unable to hire individuals residing in Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, New Hampshire, Wyoming, Puerto Rico, District of Columbia (Washington D.C.) or other US Territories at this time.

    Proof of eligibility to work in the United States must be provided if selected for hire.

  • Delta Dental includes : Delta Dental of California, Delta Dental Insurance Company, Delta Dental of Pennsylvania, and Delta Dental of New York

    • If You Are A Current Employee Click Here To Apply

    [job_alerts.create_a_job]

    Engineer Vulnerability • San Francisco, CA, United States

    [internal_linking.similar_jobs]
    Browser Security Engineer — Proactive Vulnerability & Cross-Team Impact

    Browser Security Engineer — Proactive Vulnerability & Cross-Team Impact

    Pantera Capital • San Francisco, CA, United States
    [job_card.full_time]
    A leading AI platform based in San Francisco is looking for a dedicated Security Engineer.This role involves triaging vulnerabilities, collaborating with external researchers, and enhancing securit...[show_more]
    [last_updated.last_updated_30] • [promoted]
    EMCOR Government Services, Inc.

    EMCOR Government Services, Inc.

    EMCOR Group Inc • Redwood City, CA, United States
    [job_card.full_time]
    When military bases, national security agencies, federal buildings, healthcare facilities, and leading commercial clients in Washington D. C and across the nation need superior facility support serv...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Application Security Engineer : Vulnerability & OSS

    Lead Application Security Engineer : Vulnerability & OSS

    Glean Technologies, Inc. • San Francisco, CA, United States
    [job_card.full_time]
    A technology company is seeking an experienced Application Security Engineer to lead the vulnerability management lifecycle and ensure security across the technology stack.This role involves implem...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Staff Systems Engineer

    Staff Systems Engineer

    Bio-Rad Laboratories • Hercules, CA, United States
    [job_card.full_time]
    Working within Bio-Rad's Life Science R&D Group as a Systems Engineer, you will take engineering concepts, requirements and transform them into functional prototypes and finished products that impr...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Managing Consultant, Environmental Health and Safety / San Fran Bay Area

    Managing Consultant, Environmental Health and Safety / San Fran Bay Area

    ERM • Menlo Park, CA, United States
    [job_card.temporary]
    Why This Role Matters ERM partners with the most dynamic organizations to tackle their toughest EHS and sustainability challenges. As a Managing Consultant, Environmental Health and Safety within t...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Safety Manager

    Safety Manager

    West Valley Construction • Redwood City, CA, United States
    [job_card.full_time]
    Company Overview West Valley Construction Co.We specialize in the installation, maintenance, and 24 / 7 emergency response of essential utilities such as water, power, gas, telecommunications, sewer...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    COR Regional Compliance Specialist - OPS

    COR Regional Compliance Specialist - OPS

    WinnCompanies • Richmond, CA, United States
    [job_card.full_time]
    COR Regional Compliance Specialist (Westridge at Hilltop) WinnCompanies is looking for a dynamic Affordable Housing Compliance Specialist to join our team at the Residences at Westridge at Hilltop...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Compliance Analyst I

    Compliance Analyst I

    VOLEON • Berkeley, CA, United States
    [job_card.full_time]
    Voleon is a technology company that applies state-of-the-art AI and machine learning techniques to real-world problems in finance. For nearly two decades, we have led our industry and worked at the ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Safety Dept Manager

    Safety Dept Manager

    ASR Group • Crockett, CA, United States
    [job_card.full_time]
    ASR Group is the world's largest refiner and marketer of cane sugar, with an annual production capacity of more than 6 million tons of sugar. The company produces a full line of grocery, industrial,...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Technology Vulnerability Management Engineer

    Technology Vulnerability Management Engineer

    Cooley • San Francisco, CA, United States
    [job_card.full_time]
    Technology Vulnerability Management Engineer.Cooley is seeking a Technology Vulnerability Management Engineer to join the Security team. Cooley Technology embraces a culture of customer service exce...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Site Reliability Engineer (Senior or Staff), Infrastructure Security

    Site Reliability Engineer (Senior or Staff), Infrastructure Security

    MongoDB • San Francisco, CA, United States
    [job_card.full_time]
    We are looking for an experienced Senior or Staff Engineer for our SRE, InfraSec team, to guide the security of our cloud-based infrastructure. As a Staff SRE, you will be very hands-on technically ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Project Engineer (Water Treatment Facilitiess)

    Project Engineer (Water Treatment Facilitiess)

    Helix Electric Inc • Orinda, CA, United States
    [job_card.full_time]
    Helix Electric was founded in 1985 and is now one of the nation's largest and most successful electrical contracting companies. Our commitment to empowering people and powering projects is realized ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Ground Software & Systems Manager - Mission Operations (0346U), Space Sciences Laboratory - 83546

    Ground Software & Systems Manager - Mission Operations (0346U), Space Sciences Laboratory - 83546

    InsideHigherEd • Berkeley, California, United States
    [job_card.full_time]
    Ground Software & Systems Manager - Mission Operations (0346U), Space Sciences Laboratory - 83546.At the University of California, Berkeley, we are dedicated to fostering a community where everyone...[show_more]
    [last_updated.last_updated_1_day] • [promoted]
    Technology Vulnerability Management Engineer

    Technology Vulnerability Management Engineer

    Cooley LLP • San Francisco, CA, United States
    [job_card.full_time]
    Technology Vulnerability Management Engineer.Cooley is seeking a Technology Vulnerability Management Engineer to join the Security team. Cooley Technology embraces a culture of customer service exce...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Security Engineer, DevSecOps & Vulnerability Lead

    Senior Security Engineer, DevSecOps & Vulnerability Lead

    Okta for Developers • San Francisco, CA, United States
    [job_card.full_time]
    A leading identity technology company is seeking a Senior Security Engineer to enhance security across infrastructure, cloud, and business systems. The ideal candidate will have over 7 years of expe...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Safety Manager

    Safety Manager

    NOVO Construction • Menlo Park, CA, United States
    [job_card.full_time]
    The Safety Manager plays a vital role in coordinating, administering and implementing NOVO Constructions Site Specific Environmental Health and Safety Program. We are seeking a candidate with strong...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    DevOps Engineer

    DevOps Engineer

    Nimblerx • Redwood City, California, United States
    [job_card.full_time]
    We are starting by building the largest, most loved pharmacy business in the world.We are a fast-growing, technology-first startup driven by perfecting the patient and pharmacist experience.Nimble ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Staff Engineer - Cybersecurity

    Senior Staff Engineer - Cybersecurity

    Exelixis • Alameda, CA, United States
    [job_card.full_time]
    Join our highly skilled and rapidly growing cybersecurity team as a Senior Staff Engineer.In this role, you will be at the forefront of our cybersecurity operations, focusing on threat detection, i...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]