Lead Vulnerability Management

Lead and execute a comprehensive Vulnerability Management program using legacy and modern assets and applications located on-premises and in the cloud. You will own and operate the enterprise vulnerability management program, including vulnerability scanning, reporting, and remediation tracking. Build strong partnerships with asset owners and managed service providers to drive vulnerability remediation, mitigation, reduce exposure and potential business impact, and ensure secure asset configurations. Oversee and technically validate the MSP’s delivery of vulnerability scanning and assessments using Tenable tools. Accountable for the vulnerability remediation process within CNA, which may include vulnerabilities discovered through, but not limited to, vulnerability scanning, ethical hacking, threat intelligence, application security, responsible disclosure, etc. Mentor and develop a team of vulnerability management professionals, fostering a culture of continuous learning and operational excellence. Communicate vulnerability risks, trends, and remediation progress to senior leadership. Partner with application and infrastructure owners to ensure remediation activities are prioritized and executed effectively.