Senior Manager, IT - Threat and Vulnerability
Chicago, IL
The Kraft Heinz Company
The Kraft Heinz Company provides high quality, great taste and nutrition for all eating occasions whether at home, in restaurants or on the go.Job Description
Here at Kraft Heinz, we grow our people to grow our business, because we believe that great people make great companies. When you join our table, you can expect access to an array of holistic wellness benefits* and perks, including medical, dental and vision coverage, 7% 401(k) matching, Business Resource Groups (BRGs) to help foster diversity, inclusion, and belonging for all employees, an industry-leading total rewards package that emphasizes a high discretionary bonus.
*Benefits begin immediately upon hire for salaried employees.
Get a peek into life here at Kraft Heinz through our Instagram and TikTok channels!
Sr Threat & Vulnerability Manager at a glance
The Senior Manager, Threat and Vulnerability Management will be responsible for building and maintaining a fully mature enterprise-wide Vulnerability Management Program. This role is challenged with the responsibility of identifying, filtering, reporting, tracking, and documenting vulnerabilities and threats across the organization and working with business unit partners to harmoniously resolve security matters. You will engage directly with various operational teams ensuring vulnerabilities are detected, prioritized, and remediation/mitigation actions are executed. You will play a key role in operational reporting & metrics capability, ultimately ensuring business units can adequately be measured towards compliance to the vulnerability management program.
What's on the menu?
Coordinating security incident meetings, dividing responsibilities, and influencing key stakeholders to resolve security vulnerabilities.
Drives key findings and root cause analysis improvements with key senior leadership across the organization.
Will support a continuous TV lifecycle including Identify and drive process improvement within TV, including driving opportunities to automate improving efficiency and support.
Track all vulnerability remediation efforts & hold support teams and vendors accountable for timelines.
Manage Vulnerability Management vendor to ensure operational excellence and effectiveness.
Assessing the criticality of findings and drawing up response plans alongside system owners.
Escalation and timely resolution of issues and problems
Recipe for success: Apply now if this sounds like you!
I have experience managing vulnerability management programs, risk, and/or security operations.
I have experience with Service Now (understanding of flows and process) or equivalent ticketing platform.
I have a solid understanding of how to run a vulnerability program inside and out, scope updates, scanning, triage, reporting, ticket creation, automation, dynamic tagging and understand risk.
I have a solid understanding and knowledge of vulnerability management tools and methodologies and security attack vectors.
I have sound knowledge of common infrastructure and web application vulnerabilities and common vulnerability categorizations such as CVE, CVSS, CWE.
I have effective interpersonal skills, with ability to build consensus and integrate people, processes, and technology in a fast-moving environment.
I have excellent interpersonal, communication, and presentation skills, including formal report writing experience.
Please note: This job posting is just a preview of the full scope of the position. A comprehensive job description is shared upon interview.
We hope to find you a seat at our table!
Location(s)
Chicago/Aon CenterKraft Heinz is an Equal Opportunity Employer that prohibits discrimination or harassment of any type. All qualified applicants are considered for employment without regard to race, color, national origin, age, sex, sexual orientation, gender, gender identity or expression, disability status, protected veteran status, or any other characteristic protected by law. Applicants who require an accommodation to participate in the job application or hiring process should contact NATAI@kraftheinz.com .
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Compliance CVSS Vulnerabilities Vulnerability management
Perks/benefits: Career development Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs