Vulnerability Management Governance Expert

Volvo Business Services AB / Datajobb / Göteborg
Observera att sista ansökningsdag har passerat.


Visa alla datajobb i Göteborg, Mölndal, Partille, Kungälv, Lerum eller i hela Sverige
Visa alla jobb hos Volvo Business Services AB i Göteborg, Mölndal, Kungsbacka, Borås, Trollhättan eller i hela Sverige

We are seeking a highly skilled and experienced Vulnerability Management Governance Expert to join our team. The ideal candidate will be responsible for overseeing and governing the vulnerability management process, including vulnerability assessment and prioritization. They will ensure that vulnerabilities are effectively identified, evaluated, and addressed in a timely manner to maintain the security and integrity of our systems and data. This role requires a strong understanding of vulnerability management frameworks, industry best practices, and risk management principles.
At Enterprise IT Security (EITS), we are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs drive the business, the TDs provide research, development, purchasing, manufacturing, and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction, and have global responsibility in group-wide functions such as IT, legal, compliance, and security.
This particular function/role resides in the Active Cyber Defense division which is a part of EITS and responsible for proactive measures to enhance preparedness against cyber threats. You will report to the Head of Attack Surface Management in this role.

Role Description
In this role, you will:
1. Governance and Strategy:
Develop and maintain a comprehensive vulnerability management governance framework, policies, and procedures.

Establish and communicate vulnerability management goals, objectives, and performance metrics to stakeholders.

Collaborate with cross-functional teams to align vulnerability management efforts with business objectives.

2. Vulnerability Assessment and Prioritization:
Oversee the identification and assessment of vulnerabilities in systems, applications, and network infrastructure.

Analyze vulnerability data, threat intelligence, and risk factors to prioritize remediation efforts.

Collaborate with IT and security teams to ensure accurate and efficient vulnerability scanning and testing processes.

Stay updated on emerging threats, vulnerabilities, and industry trends to enhance vulnerability assessment strategies.

3. Remediation and Mitigation:
Coordinate with the infrastructure vulnerability management team and stakeholders to develop and implement effective remediation plans.

Monitor and track vulnerability remediation progress, ensuring timely closure of identified vulnerabilities.

Provide guidance and support to IT teams regarding vulnerability mitigation techniques and best practices.

Conduct post-remediation validation to verify the effectiveness of implemented solutions.

Critical Competencies:
Vulnerability Management Expertise: In-depth knowledge and understanding of vulnerability management frameworks, methodologies, and tools. Familiarity with vulnerability scanning and penetration testing techniques.

Risk Management: Strong understanding of risk assessment and risk management principles. Ability to assess and prioritize vulnerabilities based on potential impact and likelihood of exploitation.

Governance and Policy Development: Proven experience in developing and implementing vulnerability management governance frameworks, policies, and procedures. Ability to align vulnerability management efforts with organizational goals and compliance requirements.

Technical Proficiency: Familiarity with various operating systems, network protocols, and security technologies. Knowledge of common security vulnerabilities, attack vectors, and security controls.
Analytical Thinking: Strong analytical and problem-solving skills to analyze vulnerability data, threat intelligence, and risk factors. Ability to interpret complex technical information and provide actionable recommendations.

Communication and Collaboration: Excellent verbal and written communication skills to effectively communicate vulnerability assessment findings, risks, and remediation strategies to both technical and non-technical stakeholders. Ability to collaborate with cross-functional teams and build relationships.

Continuous Learning: Demonstrated commitment to staying updated on the latest security trends, vulnerabilities, and industry best practices. Willingness to pursue relevant certifications and participate in professional development activities.

Willingness to learn, know and understand Volvo Group security policies, directives and requirements

Minimum Education and Experience:
Bachelor's or Master's Degree in Information Technology, Information Systems, Engineering, a related field or equivalent work experience.

Minimum of 5 years of experience in Vulnerability Management Governance.

Experience in tech, security or automotive industry is highly regarded.

Subject matter expertise in vulnerability management and attack surface management.
Strong commitment to staying updated with emerging cyber threats, industry trends, and advancements in Vulnerability Management area.

Are you interested? Contact us!

Bhakuni, Lalit lalit.bhakuni@volvo.com

Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.

Så ansöker du
Sista dag att ansöka är 2023-06-25
Klicka på denna länk för att göra din ansökan

Omfattning
Detta är ett heltidsjobb.

Arbetsgivare
Volvo Business Services AB (org.nr 556029-5197)
405 08  GÖTEBORG

Arbetsplats
Group Digital & IT

Jobbnummer
7838651

Observera att sista ansökningsdag har passerat.

Prenumerera på jobb från Volvo Business Services AB

Fyll i din e-postadress för att få e-postnotifiering när det dyker upp fler lediga jobb hos Volvo Business Services AB: