Manager, Technical Risk Mitigation - Remote

Join the People Helping People

PSCU/Co-op Solutions is now Velera! PSCU and Co-op Solutions became a single entity on January 2, 2024, and our new company name was announced on May 7, 2024. Our new brand represents our combined company’s shared mission and unique ability to drive velocity and positive momentum for credit union success in a new era of financial services.

This position provides managerial oversight for the identification, assessment, prioritization, and remediation of vulnerabilities across our systems and networks. The selected incumbent will manage the Threat Mitigation team and its scope of responsibilities and will collaborate closely with cross-functional teams to implement effective remediation strategies to ensure Velera’s infrastructure remains secure against potential threats. The incumbent will support and lead a Vulnerability Management team with day-to-day assignments, work prioritization, escalations, and provide general work guidance. Additional duties will include reviewing work needs and ensuring resources and deliverables are tasked and completed in a timely fashion. The incumbent will assume the leadership role for all assigned projects and coordinate all phases of the team’s obligations.

Essential Functions & Responsibilities

• Conduct regular vulnerability assessments across Velera’s systems, applications, and networks.

• Analyze scan results and prioritize vulnerabilities based on risk and potential impact.

• Develop and maintain vulnerability management policies, procedures, and documentation.

• Work closely with system owners and IT teams to ensure timely remediation of identified vulnerabilities.

• Oversee enterprise-wide patching activities to ensure expected IT patch compliance is executed and metrics are met.

• Via CIS benchmark guidance, define, codify, and enforce system hardening guidelines and report on adherence.

• Through expanded training propel the Vulnerability Management team to assume direct remediation work when and where permissible.

• Define opportunities to institute advanced proactive protective measures that aim to identify, assess and eliminate potential vulnerabilities before they can be exploited.

• ​Liaise with Information Security, Compliance, and Internal Audit to implement, maintain and report on enterprise-wide vulnerability functions and practices as they relate to assigned areas of responsibility.

• Stay current with emerging threats, vulnerabilities, and industry trends to enhance our security posture.

• Perform other related duties as required to competently support this role.

Supervisory Responsibility

• Provide direction and leadership to staff; guide, coach, mentor and develop staff ensuring compliance with processes and procedures.

• Provide best-practices technical direction and assistance to staff to guide solutions and resolve technical issues and challenges.

• Handle interviewing, hiring, promotions, transfers, performance appraisals, compensation, counseling and termination of staff.

• Develop and maintain staff by applying the necessary training and leadership that will allow internal growth and advancement.

• Direct staff, to ensure that all duties are performed according to department performance standards.

• Lead by example, emulating, incorporating, and supporting Velera’s core values in every interaction.

• Bachelor’s degree in MIS, or a Computer Science related discipline, or the equivalent combination of education and experience in information technology required. Information technology or security certification required in at least one of the following: GCWN, RHCE, CCNA, CISSP, CISA, CISM, CCSP, GSE, GSNA, GSAE. If the incumbent does not have one of these certificates, or the certificate has expired, it will need to be in place within 1 year of assuming the role.

Experience

• Minimum Five (5) years of experience in an IT Security role with direct hands-on experience in administering common vulnerability scanning utilities and patching systems, possess advanced threat analysis and monitoring skills, and has familiarity with Red and Blue Team cyber threat analysis and procedures. Association with security industry groups (ISSA, ISACA, (ISC)2, ASIS) required. 

About Velera

At Velera we are committed to fostering a workplace where every employee feels valued, respected, and connected. We understand, attract and engage a diverse workforce where every employee can live up to their full potential; ensuring that our employee base reflects the consumers we serve. The result of this effort is an inclusive environment where diverse talent thrives. We strive to foster a safe and inclusive work environment for people to bring their authentic selves in order to build a better community within our company and with our partners. Learn more about our commitment to Diversity, Equity, and Inclusion HERE!

Pay Equity

$117,000.00

to

$152,100.00

Actual Pay will be adjusted based on experience and other job-related factors permitted by law.

Great Work/Life Benefits!

• Competitive wages

• Medical with telemedicine

• Dental and Vision

• Basic and Optional Life Insurance

• Paid Time Off (PTO)

• Maternity, Parental, Family Care

• Community Volunteer Time Off

• 12 Paid Holidays

• Company Paid Disability Insurance

• 401k (with employer match)

• Health Savings Accounts (HSA) with company provided contributions

• Flexible Spending Accounts (FSA)

• Supplemental Insurance

• Mental Health and Well-being: Employee Assistance Program (EAP)

• Tuition Reimbursement

• Wellness program

• Benefits are subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions

Velera is an Equal Opportunity Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state or local law.

Velera is an Equal Opportunity Employer that complies with the laws and regulations set forth in the following "EEO is the Law" Poster and the "EEO is the Law" Poster Supplement. Velera will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the legal duty to furnish information.

Velera is an E-Verify Employer. Review the E-Verify Poster here (English and Spanish). For information regarding your Right To Work, please click here (English and Spanish poster).

As an ongoing commitment to reasonably accommodate individuals with disabilities please contact a recruiter at [email protected] for assistance.