Hybrid work arrangement required: 4 days on-site, 1 remote in one of our organizational hubs including: Johnston, RI - Phoenix, AZ - Westwood OR Medford, MA - Plano, TX - Iselin, NJ - Pittsburgh, PA - Franklin, TN - Cleveland OR Columbus, OH - Chicago, IL
We are currently seeking a highly motivated, detail oriented, and customer focused individual to play a key role on the team. In this role on the Cyber Defense – Infrastructure Vulnerability Management Team, you will be responsible for performing vulnerability and compliance scanning and analysis to aid Citizens in assessing the enterprise vulnerability posture and reducing the attack surface.
Working closely with business lines and infrastructure teams, you will directly contribute to the effort to identify, track, and remediate the open vulnerabilities (technical Vulnerabilities or build compliance deviations) on systems that store, process, or display Citizen’s data. In this role, it is critical that you must understand technology operations as well as security operations, with a keen understanding of the concept of mitigating and compensating controls is required.
Responsibilities (but not limited to)
Actively looking for ways to improve the processes around the program to provide a best of breed, world class service
Communicating security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators
Maintaining a deep understanding of current threat, vulnerabilities, attacks, countermeasures and how to respond effectively to them while providing training to the rest of the team on these items
Developing meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk
Improving the capabilities and maturity of the Citizens Vulnerability Management Program by identifying appropriate technologies, policies, communication channels, organizational structures and relationships with third parties
Required Experience and Skills
8+ years of progressive security industry experience, including 2+ years in a leadership or management role.
5 years of progressive security industry experience
1-2 years of experience with with QualysGuard Vulnerability Scanner including its API, Vulnerability Management (VM), Policy Compliance (PC), CloudView, AssetView, Cloud Agent, and other modules highly preferred
1-2 years of experience with other vulnerability management solutions such as Tenable, Rapid7, and others is acceptable with the understanding that you will be expected to be a domain expert with this Qualys in 3-6 months.
Recall level of understanding of CVSS, CVE, CWE, CPE, CCE, CWE, OVAL, SCAP and other standards
Experience developing applications, automation scripts, or other solutions in at least one modern language (Python, Powershell, Java, C/C++, Go, etc)
Expert understanding of various operating systems (Window, UNIX, Linux, AIX, with an emphasis on vulnerability assessment and hardening. Subject matter expertise in at least one of the operating systems is required
Practical knowledge of security hardening, configuration management, change control/problem management, exception management and security baselines (. CIS Baselines, NIST, vendor security technical implementation guides,
Practical knowledge of Cloud (AWS, Azure, and how to secure them
Associate level knowledge of networking fundamentals
Experience fostering and maintaining relationships with key stakeholders and business partners
Self-motivation with the ability to work under minimal supervision is a must
Ability to demonstrate manual testing experience including all of OWASP Top 10
Demonstrated experience with common penetration testing and vulnerability assessment tools such as nmap, Wireshark, Nessus, NeXpose, Kali, Metasploit, AppScan, WebInspect, Burp Suite Professional, Acunetix, Arachni, w3af, NTOSpider, ZAP Proxy, IronWASP is a plus
Preferred Education and Certifications
One or more relevant security certifications (GEVA, GCIH, GCIA, OSCP, GPEN, GXPN, GWAPT, GWEB, GCIA, GSNA, LPT, Security +, CISSP, CISM, CISA)
Bachelor’s Degree or equivalent combination of experience
Hours & Work Schedule
Hours & Work Schedule: M-F
Hours per Week: 40
Pay Transparency
The salary range for this position is $175,000-$205,000 per year plus an opportunity to earn an annual discretionary bonus. Actual pay is based on various factors including but not limited to the work location, and relevant skills and experience.
We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. Note, Citizens’ paid time off policy exceeds the mandatory, paid sick or paid time-away policy of very local and state jurisdiction in the United States. For an overview of our benefits, visit .
#LI-Citizens1
Manager Vulnerability Management • Johnston, RI, United States
Are you ready to be part of a company that's not just talking about the future, but actively shaping it? Join The AES Corporation (NYSE: AES), a.AES is committed to shaping a future through innovat...[internal_linking.show_more]
PSA/NEA - Professional Staff Assoc.Anticipated Salary Hiring Range: $59,013 - $65,000.Retention and Academic Success Center.The search will remain open until the position has been filled.First cons...[internal_linking.show_more]
Do you love landscaping? Spending time outside marveling at nature’s beauty surrounded by the smell of freshly cut grass? If you answered yes, then Yellowstone Landscape could be the place for you!...[internal_linking.show_more]
Company DescriptionSince 1960, Canam has been an employer with a strong, unifying and family culture, rallying its 5,100 employees.With offices in Canada, the United States, Romania, India and the ...[internal_linking.show_more]
Job Summary Oversee and manage local drivers ensuring proper communication between drivers, Branch and Corporate Management.While professional experience and qualifications are key for this role, m...[internal_linking.show_more]
Responsible for the direct supervision and accountability of the internal and external staff responsible for the investigation, adjustment and settlement of property claims.Provides daily oversight...[internal_linking.show_more]
Vinagro is currently seeking an experienced Project Manager with a background in demolition, environmental services, or heavy civil/site development.This role is ideal for a motivated individual wi...[internal_linking.show_more]
The Senior Clinical Study Lead (CSL) is expected to operate with high-degree of independence and is accountable for the global execution of assigned large and/or complex clinical trials from study ...[internal_linking.show_more]
Note: This is an educational program, not a job.Successful completion of the program does not guarantee employment but will equip you with valuable skills for the business and professional job mark...[internal_linking.show_more]
Recruitment Incentive: Applicants may be eligible for a $40,000 recruitment incentive in accordance with regulatory requirements.Click apply for complete details on the recruitment incentive detail...[internal_linking.show_more]
Rotating Engineer – Onshore Reliability.Bachelor’s Degree in Mechanical Engineering.Oil & Gas / Refinery (Onshore).The Rotating Engineer – Onshore Reliability will be responsible for ensuring the o...[internal_linking.show_more]
Fire Safety Engineer - Remote - 55,000I am currently helping a well-established fire engineering consultancy, who are seeking a talented and motivated Fire Engineer to join their rapidly growing te...[internal_linking.show_more]
AlliedTravelCareers is working with FlexCare to find a qualified Echo Tech in Woonsocket, Rhode Island, 02895!.Certs & Licenses BLS, ARRT.Call-off Policy Log in to view.First Offer = Best Offer Gua...[internal_linking.show_more]
Referral & Resource Specialist Location: Candidates must reside in one of the following states to be considered : MASSACHUSETTS, NEW HAMPSHIRE, CONNECTICUT, RHODE ISLAND OR NEW YORK.This role enabl...[internal_linking.show_more]
Nicholson Plumbing, Heating and Air Conditioning in Holliston, MA.HVAC Installation Manager to provide excellent leadership to our Residential HVAC Installation Department.Are you an experienced HV...[internal_linking.show_more]
Riverside Community Care Love what you do! Adult Clinical Team Manager Riverside is seeking a passionate clinical team manager to join our Community Behavioral Health Center (CBHC) team in Milford!...[internal_linking.show_more]
A leading technology firm in Smithfield, Rhode Island is looking for a Technical Project / Delivery Manager to oversee the delivery of business and technical requirements for complex initiatives.Th...[internal_linking.show_more]
The HR Business Partner plays a meaningful role in enabling the transformation and sustained performance of Global Operations, supporting a complex, multi-site, and globally distributed organizatio...[internal_linking.show_more]
