Vulnerability Manager

Texas Capital is built to help businesses and their leaders. Our depth of knowledge and expertise allows us to bring the best of the big firms at a scale that works for our clients, with highly experienced bankers who truly invest in people’s success — today and tomorrow.  

While we are rooted in core financial products, we are differentiated by our approach. Our bankers are seasoned financial experts who possess deep experience across a multitude of industries. Equally important, they bring commitment — investing the time and resources to understand our clients’ immediate needs, identify market opportunities and meet long-term objectives. At Texas Capital, we do more than build business success. We build long-lasting relationships. 

Texas Capital provides a variety of benefits to colleagues, including health insurance coverage, wellness program, fertility and family building aids, life and disability insurance, retirement savings plans with a generous 401K match, paid leave programs, paid holidays, and paid time off (PTO). 

Headquartered in Dallas with offices in Austin, Fort Worth, Houston, Richardson, Plano and San Antonio, Texas Capital was recently named Best Regional Bank in 2024 by Bankrate and was named to The Dallas Morning News’ Dallas-Fort Worth metroplex Top Workplaces 2023 and GoBankingRate’s 2023 list of Best Regional Banks. For more information about joining our team, please visit us at www.texascapitalbank.com. 

The Vulnerability Manager is responsible for identifying, categorizing, assigning, and tracking of vulnerabilities across Texas Capital applications and systems, including vulnerabilities identified through penetration testing. The manager is also responsible for secure configuration management to ensure systems are configured with security best practices in mind.

The Vulnerability Manager reports to the Head of Information Risk and acts as an independent, second-line challenge to the IT and Information Security Teams.

Responsibilities

• Provide thought leadership, strategic direction, and execution of the Firm’s Vulnerability Management Program to ensure vulnerabilities are promptly identified, prioritized based the risk and business criticality, and assigned to appropriate remediation teams for timely resolution.
• Responsible for researching and analyzing vulnerabilities, identifying relevant threats, corrective action recommendations, summarizing and reporting results.
• Reporting the effectiveness of the Vulnerability Management Program, as well as effectiveness of remediation efforts, to senior leadership and risk committees
• Oversees the development of baseline security configurations for operating systems, applications, and networking equipment as well as the identification of variations from these baselines.
• Manages the periodic penetration testing of the Firm’s computing environments including vendor selection, scheduling of testing, assignment of findings to remediation teams, tracking of remediation efforts, and reporting results to senior leadership and risk committees

Qualifications

• Bachelors’ Degree preferred, Computer Science, Security or equivalent educational or professional experience and/or qualifications required
• 5 years of experience in a Vulnerability Management or Information Security role required
• Advanced understanding of technical information security concepts related to threat landscapes required
• Security Certifications such as the Certified Information Systems Security Professional (CISSP) preferred
• Experience with vulnerability scanners, vulnerability management systems, patch management, and host based security systems
• Experience with CMDB
• Understanding of controls: access control, auditing, authentication, encryption, integrity, and application security
• Advanced understanding of operating systems such as Windows environments, Active Directory, VPN systems, encryption schemas and algorithms, various authorization and authentication mechanisms/software, network monitoring and sniffing, TCP/IP networks and vulnerability and threat management tools
• Demonstrable conceptual, analytical and innovative problem-solving and evaluative skills, an ability to conduct independent research and analysis, identifying issues, formulating options, and making conclusions and recommendations
• Demonstrated ability to recognize, interpret, and communicate vulnerability management information
• Functional business knowledge

The duties listed above are the essential functions, or fundamental duties within the job classification.  The essential functions of individual positions within the classification may differ. Texas Capital Bank may assign reasonably related additional duties to individual employees consistent with standard departmental policy.Texas Capital is an Equal Opportunity Employer.