Vulnerability Management Engineer

Posted 10 Days Ago
Hiring Remotely in United States
Remote
Mid level
Appliances • Industrial • Manufacturing
The Role
The Vulnerability Management Engineer oversees the development and implementation of a Vulnerability Management program, focusing on identifying, assessing, and rectifying vulnerabilities. This role involves collaborating across various teams to enhance security posture, performing vulnerability scanning, and ensuring compliance with industry standards.
Summary Generated by Built In

Build a career powered by innovations that matter! At Novanta, our innovations power technology products that are transforming healthcare and advanced manufacturing—improving productivity, enhancing people’s lives and redefining what’s possible. We create for our global customers engineered components and sub-systems that deliver extreme precision and performance for a range of mission-critical applications—from minimally invasive surgery to robotics to 3D metal printing.

Novanta is one global team with over 26 offices located in The Americas, Europe and Asia-Pacific. Looking for a great place to work? You have found it with a culture that embraces teamwork, collaboration and empowerment. Come explore Novanta.

Job Description

Build a career powered by innovations that matter! At Novanta, our innovations power technology products that are transforming healthcare and advanced manufacturing improving productivity, enhancing people’s lives and redefining what’s possible. We serve as a trusted technology partner to medical and advanced industrial original equipment manufacturers (OEMs) worldwide, engineering components and sub-systems that deliver extreme precision and performance for a range of mission-critical applications from minimally invasive surgery to robotics to 3D metal printing.

Novanta is a global organization with offices located throughout EMEA, The Americas and Asia Pacific. Novanta is a publicly traded company on NASDAQ under symbol NOVT.

Business Overview

Novanta’s Corporate and Shared Services teams play an important role in executing the company’s strategic mission and operations. Included in Corporate and Shared Services are the business functions including Finance, Accounting, Human Resources, Information Technology, Legal, Compliance, Corporate Development and Corporate Marketing. The Corporate and Shared Services teams work closely with all Novanta business units to support operating initiatives contributing to the organization’s financial success.

Position Details

Summary

The Vulnerability Management Engineer plays a critical role in safeguarding our organization's assets by overseeing the development and implementation of a comprehensive Vulnerability Management program. The Vulnerability Management Engineer will work within the Security Engineering team to enhance and ensure the continuous vulnerability lifecycle management within Novant’s diverse environments. This program aims to identify, assess, and rectify vulnerabilities in both production and enterprise assets, ensuring the organization's security posture remains robust. This role will support the collection, monitoring, reporting, and impact assessment for vulnerability related data. Your goal is to maintain the confidentiality, integrity, and availability of our data, while ensuring compliance with industry standards and regulations.

Primary Responsibilities

  • Providing security expertise and communicating complex security issues to the executive leadership team.

  • Build and maintain a comprehensive vulnerability management program aligned with industry standards and best practices.

  • Perform hands-on vulnerability scanning and management, patching systems, designing mitigation strategies, and authoring vulnerability-related products, such as, program doctrine and analysis reports.

  • Collaborate cross-functionally with teams including IT, Security, Engineering/Production, and Leadership, ensuring vulnerabilities are addressed efficiently.

  • Prioritize vulnerabilities based on severity, risk level, and potential impact on the organization's operations and reputation.

  • Facilitate remediation plans for identified vulnerabilities, collaborating with asset owners to ensure timely resolution.

  • Monitor and track the progress of vulnerability remediation efforts, providing regular reports to management on the overall effectiveness of the program.

  • Build dashboards, metrics, and reports that convey the health and stability of the VM program.

  • Stay current with the latest trends and advancements in cyber defense tools, and relevant cyber threats.

  • Drive to learn new things about vulnerability management, exploits, hacker techniques, and overall security operations.

Required Experience, Education, Skills, Training and Competencies

  • Possess knowledge of security frameworks such as NIST, ISO, and CIS.

  • Prior experience designing and implementing systems and measures to protect an organization’s data and network infrastructure from cyber threats and vulnerabilities.

  • Excel at prioritizing work and other demands for self and team including making risk-based decisions about remediation recommendations.

  • Identifying and developing mitigation strategies. This includes designing mitigations that specifically address vulnerabilities, working with system owners to patch systems, and identifying adequate solutions to remediate vulnerabilities where patching is not possible

  • Proficient in security technologies and products, with a solid understanding of network infrastructure and the ability to effectively implement moderate to complex security measures and solutions.

  • At least five years’ experience in vulnerability management or related field such as penetration testing, SOC, or threat intelligence.

  • Understanding of information privacy and data protection, along with how these affect and impact security across a global company.

Travel Requirements

  • Occasional – as needed

Physical Requirements

  • Mobility to work in a standard office setting and to use standard office equipment, including a computer.

  • Ability to use vison to read computer screen and read printed materials

#LI-IC1

Novanta is proud to be an equal employment opportunity and affirmative action workplace. We consider all qualified applicants without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity or expression, national origin, military and veteran status, disability, genetics, or any other category protected by federal law or Novanta policy.

Please call +1 781-266-5700 if you need a disability accommodation for any part of the employment process.

Top Skills

Vulnerability Management
The Company
Manchester
2,075 Employees
On-site Workplace

What We Do

Novanta delivers innovations that matter for its medical and advanced industrial OEM customers. If you have a passion for solving complex technical problems that lead to breakthrough performance and that enhance people's lives, come join our growing team.

Here is a sample of the many exciting applications we serve:
• Innovations that ensure the safety of patients and efficient workflows in hospitals using our novel RFID technology
• Innovations in additive manufacturing, also known as 3-D metal printing, using our lightning fast lasers and laser beam steering sub-systems
• Innovations in minimally invasive surgery using our highly reliable insufflators, pumps and visualization systems
• Innovations in robotics and automation using our precision motors, encoders and drives for superior accuracy
• Innovations in smartphone production using our fast, accurate lasers and laser beam steering equipment along with our precision motion systems

The driving force behind our growth is the team of talented professionals who share our commitment to our values, and our passion for innovation and for our customers’ success.

Novanta has deep expertise in precision medicine and manufacturing, medical solutions, and robotics and automation:

Precision Medicine and Manufacturing:
• Continuous wave, ultrafast and CO2 lasers, along with laser beam steering components and sub-systems
Brands: ARGES, Cambridge Technology, Laser Quantum, Synrad

Medical Solutions:
Minimally Invasive Surgery:
• Insufflators, pumps and disposable tube sets; medical visualization systems, video processing and wireless imaging
Brands: NDS, Med X Change, Reach Technology, WOM
Detection & Analysis:
• RFID readers, machine vision solutions, barcode scanning, light and color measurement
Brands: JADAK

Robotics and Automation:
• Motors, encoders, servo drives, air bearing systems and integrated mechatronic solutions
Brands: ATI, Celera Motion (inc. Applimotion, Ingenia, MicroE, Zettlex, Westwind)

Similar Jobs

CrowdStrike Logo CrowdStrike

ServiceNow Developer, Vulnerability Response and Asset Management (Remote)

Cloud • Information Technology • Sales • Security • Cybersecurity
Remote
USA
10000 Employees
80K-130K Annually

Celonis Logo Celonis

Vulnerability Management Engineer

Big Data • Productivity • Software • Database • Analytics • Business Intelligence • Consulting
Remote
10 Locations
3000 Employees

Coinbase Logo Coinbase

Staff Security Engineer, Vulnerability Management

Cloud • Fintech • Cryptocurrency • NFT • Web3
Remote
USA
3700 Employees
212K-249K Annually

Western Digital Logo Western Digital

Senior Vulnerability Management Engineer

Big Data • Cloud • Hardware • Software
Remote
Milpitas, CA, USA
25132 Employees

Similar Companies Hiring

McCain Foods Thumbnail
Retail • Manufacturing • Food • Agriculture
Florenceville-Bristol, NB
20000 Employees
Arch Systems Inc. Thumbnail
Software • Manufacturing • Machine Learning • Internet of Things • Industrial • Artificial Intelligence • Analytics
US
80 Employees
Accuris Thumbnail
Software • Manufacturing • Machine Learning • Information Technology • Generative AI • Conversational AI
Denver, CO
1200 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account