Vulnerability Management Application Security Lead Job at Insight Global, Wilmington, NC

RGZUSFdwOE96NTlzc2JsdHY2N0ZscEhKeXc9PQ==
  • Insight Global
  • Wilmington, NC

Job Description

Responsibilities

The Vulnerability Management Application Security Lead works within Berkley’s Information Security team, interacting directly with stakeholders to address issues related to remediation of vulnerability scanning and assessment. The Vulnerability Management Analyst’s support activities are focused on helping key stakeholders understand their vulnerability results, providing guidance on the remediation of failing threats, and evaluating false positives.

Maintain and improve upon, as necessary, the existing vulnerability management program, including maintenance of documents, procedures, reporting, and stakeholder communications. Provide guidance to stakeholders in support of vulnerability management services, which includes, but is not limited to, sharing goals and road maps of vulnerability management. Analysis and validation of scan/assessment results communicated to clients through reporting and results-review meetings. Provide stakeholders with remediation recommendations and guidance, up to and including remediation tracking and reporting. Provide stakeholders reports that provide the most value based on security maturity and established vulnerability management goals. This requires the ability to be adaptive in report parameters and formats depending on stakeholder needs and target audience. Ability to use analyze large amounts of data using Microsoft and other business tools to report on enterprise level vulnerability data.

Key Responsibilities:

  • Lead Security Initiatives: Spearhead and enhance our application security efforts, including penetration testing and static code analysis.
  • Innovate and Optimize: Evaluate and implement improvements to our security tools and explore new technologies to strengthen our security posture.
  • Code Analysis and Remediation: Lead projects to continuously analyze source code, identify vulnerabilities, and implement remediation strategies.
  • Compliance Management: Oversee the enterprise-wide compliance scanning process to quickly identify and address potential risks.
  • Stakeholder Communication: Regularly update and secure buy-in from global engineering, business operating units, security management, and senior leadership teams on the status of Application Security projects.

Qualifications

  • Experience: Minimum of 5+ years in Information Security or a related field, with expertise in security compliance, penetration testing, vulnerability management, and static code analysis.
  • Leadership: Prior experience in project leadership or as a team lead is preferred.
  • Education: Bachelor’s degree in Computer Science, Information Security, Network Engineering, or a related technical discipline (or equivalent experience).
  • Technical Proficiency: Skilled in commonly used penetration testing tools, web application scanning tools, and static code analysis tools (e.g., Veracode, Fortify, Checkmarx).
  • Stakeholder Engagement: Proven ability to engage and secure buy-in from business, technical, and executive stakeholders.

Job Tags

Similar Jobs

Acceler8 Talent

Senior Machine Learning Engineer Job at Acceler8 Talent

 ...everyone. The goal is to empower insurers to offer affordable coverage to individuals and organizations facing challenges such as climate change, cyber risks, and social inflation. Backed by leading investors, they leverage cutting-edge AI/ML technology to redefine how... 

Drury Hotels

Regional Maintenance Manager Job at Drury Hotels

 ...Mentorship, cross-training, development plans, management training, and more-over 200 internal...  ...and grounds of each hotel within the region to preserve Company assets in a safe and...  ...Monitors and implements departmental safety/security procedures which will afford maximum... 

Westinghouse

Equipment operator Job at Westinghouse

 ...BHI Energy is currently looking for a Heavy Equipment Operator which will be based at Sutton Steam Plant, located in Wilmington, NC. This is a local hire position and will not pay any relocation fees. However, this position will REQUIRE traveling to other plants for... 

PEMCO International

Product Developement Engineer - Ceramic, Metallurgical, or Materials preferred Job at PEMCO International

 ...classes in-plant or other locations as assigned Education and Additional Requirements Bachelors degree in engineering. Ceramic or materials engineering is preferred but knowledge of glass or metallurgy will be considered. The successful candidate must display... 

Insight Global

Security Professional Job at Insight Global

 ...Security Escort TS/SCI CI Poly (unarmed) Location : Aurora, CO Interview Process: 1-Round; Virtually via Microsoft Teams Pay...  ...safety and security within various environments, including corporate offices, events, and public spaces. This position involves accompanying...