Inspira Financial Trust, LLC

Apply for this job

Security Engineering Manager- Vulnerability Management (Finance)



The Security Engineering Manager leads and owns infrastructure and platform vulnerability management discovery, remediation, and reporting. These efforts will impact the confidentiality, integrity, and/or availability of information systems. The Security Engineering Manager will administer and maintain access to security systems and collaborate with other Security team leads across application security and standards compliance. The position involves serving as incident commander during a security incident, as well as mitigation or remediation of proactively discovered vulnerabilities, according to Inspira policy. The Security Engineering Manager will be responsible for the leadership and growth of other Security Engineers and may include direct reports.

  • Lead the organization's vulnerability management program, including program enhancements, metric reporting, mitigation and compensating controls, and cross-team collaboration
  • Lead an incident response team during an incident, and drive maturity into the process through exercises and procedure development
  • Align with industry best practices on vulnerability management, including mitigation efforts and auditing requirements along with tracking of SLAs as pertaining to regulatory and policy requirements
  • Develop a strong knowledge and skillset across all security functional areas including infrastructure and network security, application security, technical project management, third party risk, policy governance, awareness training
  • Contribute and assist in the coordination of evidence collection and audit maintenance for organizational assessments
  • Contribute to all aspects of application security, including vulnerability assessments, penetration testing, code review, and security training
  • Coordinate and assist in the evidence collection and response queries for inbound and outbound security and IT due diligence as part of a third-party risk management program
  • Maintain awareness of known vulnerabilities in application technologies used within Inspira
  • Lead efforts to respond to findings from audits, security questionnaires, and internal/external scanning or testing
  • Assist in the development of the policies and procedures related to information security, ensuring compliance with relevant regulations and standards
  • Assist and coordinate cross-functional work with other internal business units, such as Compliance, Legal, IT, Finance, HR, and engage with other leaders to drive security outcomes that benefit the organization
  • Track and provide security metrics, status updates and reports for the Inspira Security Program
  • Provide guidance to all other Security Engineer roles
  • Other duties as assigned
Apply
Apply Here done