Director, Vulnerability Management at CNA

| Chicago, IL
Sorry, this job was removed at 4:39 p.m. (CST) on Friday, October 1, 2021
Find out who's hiring in Nationwide.
See all Operations jobs in Nationwide
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Job Summary
Leadership position responsible for spearheading the vision design and implementation of Vulnerability Management (VM) program for CNA. This position leads the VM team develops VM strategies and conducts data security readiness assessments for the selection development and implementation of enterprise data security standards. This position will focus on designing vulnerability risk assessment and remediation program for both infrastructure and WebApp vulnerabilities by updating strategy policies and procedures and maturing vulnerability risk classification process.
Essential Duties & Responsibilities
Performs a combination of duties in accordance with departmental guidelines:
  • Leads the Vulnerability Management program as a vulnerability management SME throughout a global technology organization with various legacy and modern systems within data centers and the cloud.
  • Develops enterprise policy and technical standards with specific regard to vulnerability management and secure configuration.
  • Holistically owns the entire vulnerability remediation process within CNA which may include vulnerabilities discovered through various channels such as but not limited to vulnerability scans pentesting application scanning responsible vulnerability disclosure program and etc.
  • Successfully partners with other Security and IT professionals to assess potential impact from vulnerabilities specific to the environment and recommend mitigating security controls.
  • Identifies and recommends appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company.
  • Builds strong partnerships with technical teams to promote best practices for managing vulnerabilities in an agile manner and within cloud solutions.
  • Fully understands business requirements and work with them to define appropriate solutions for security objectives while meeting the business need.
  • Be a champion for vulnerability management and information security including broadening awareness and use of the team's services education of security best practices and integration with other business areas.
  • Provides guidance technical expertise and support to team members regarding vulnerability assessment.
  • Develops and improves KPIs and metrics for vulnerability management functions.
  • Participate and lead new projects as needed.

May perform additional duties as assigned.
Reporting Relationship
Typically AVP or above
Skills Knowledge & Abilities
  • Proven track record of leading vulnerability management teams with proven knowledge and competence in security concepts and strategies and the ability to successfully implement them.
  • Hands-on experience with vulnerability management tools and strong technical understanding and experience assessing vulnerabilities and identifying weaknesses in multiple operating system platforms database and application servers.
  • Strong written and verbal communication skills with the ability to collaborate through all parts of the business.
  • High performance skillset which not only understands the threat spaces as it relates to risks but also able to meet the technical challenge of communicating this out to our teams.
  • Leadership skills which bring out the best in the team. This includes both direct leadership but also cross-functional capabilities.
  • 6+ years in a vulnerability management program. Knowing not only how to assess vulnerabilities but also prioritize and drive remediation activities.
  • Excellent communication and interpersonal skills to work effectively with peers IT leadership and subordinates. Must be able to clearly communicate complex technical and business concepts both to business partners team members and IT Management.
  • Reporting gaps in a meaningful way that addresses a business risk as well as providing technical solutions to the operations teams in remediation is key.
  • Experience in interacting with auditors and regulators.
  • Experience in working across public cloud and on-premises hybrid infrastructure.
  • Experience in working with vulnerability scanning technologies at scale.
  • Self-starter with the ability to make independent decisions and the judgment to know when to seek guidance.
  • Fundamental understanding of risk vs severity.
  • Comfort in a diverse technology environment spanning multiple operating systems and architectures.
  • Ability to foster collaborative open working relationships with technology and other stakeholders.
  • Strong understanding of enterprise network system/endpoint and application-level security issues and risks.

Education & Experience
  • Bachelor's degree in Computer Science or related discipline or equivalent work experience.
  • Typically a minimum of ten years' related work experience in Information Technology

*LI-KC1
Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Open door policy
Team owned deliverables
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Someone's primary function is managing the company’s diversity and inclusion initiatives
Diversity Employee Resource Groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Online course subscriptions available
More Jobs at CNA180 open jobs
All Jobs
Finance
Data + Analytics
Dev + Engineer
HR + Recruiting
Internships
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Developer
new
Chicago, IL
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Sales
new
Philadelphia, PA
HR + Recruiting
new
Chicago, IL
Developer
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Content
new
Chicago, IL
Operations
new
Lake Mary
Operations
new
Lisle
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Lake Mary
Operations
new
Lisle
Operations
new
Sioux Falls
Operations
new
Wyomissing
Operations
new
Lake Mary
Data + Analytics
new
Chicago, IL
Operations
new
Dallas-Fort Worth, TX
Product
new
Chicago, IL
Sales
new
Lake Mary
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Operations
new
Lisle
Finance
new
Chicago, IL
Project Mgmt
new
Chicago, IL
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Sioux Falls
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Sales
new
Melville
Sales
new
Philadelphia, PA
Sales
new
Chicago, IL
Operations
new
Chicago, IL
HR + Recruiting
new
Chicago, IL
Developer
new
Wyomissing
Data + Analytics
new
Chicago, IL
Content
new
Dallas-Fort Worth, TX
Operations
new
Chicago, IL
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Finance
new
Chicago, IL
Sales
new
Minneapolis–Saint Paul, MN
Finance
new
Dallas-Fort Worth, TX
Marketing
new
Chicago, IL
Operations
new
Wyomissing
Finance
new
Kansas City, MO
Operations
new
Phoenix – Mesa – Scottsdale, AZ
Data + Analytics
new
Detroit, MI
Operations
new
Minneapolis–Saint Paul, MN
HR + Recruiting
new
Chicago, IL
HR + Recruiting
new
Chicago, IL
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Developer
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Houston, TX
Finance
new
Dallas-Fort Worth, TX
Finance
new
Minneapolis–Saint Paul, MN
Project Mgmt
new
Chicago, IL
Developer
new
Chicago, IL
Finance
new
Chicago, IL
Operations
new
Miami, FL
Data + Analytics
new
Chicago, IL
Internships
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Lake Mary
HR + Recruiting
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Philadelphia, PA
Finance
new
Dallas-Fort Worth, TX
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView CNA's full profileSee more CNA jobs