One stop solution to your remote job hunt!

By signing up you get access to highly customizable remote jobs newsletter, An app which helps you in your job hunt by providing you all the necessary tools.

Try Worqstrap Remote Jobs commitment free for 7 days, no credit card necessary.
OR
Subscribe to our highly customizable newsletter to get remote jobs from top remote job boards delivered to your inbox.
Subscribe
Vulnerability Management Lead
Bath and Body Works 5 months ago
Apply Now5 months ago
location: remoteohious columbus
Apply Now

Vulnerability Management Lead

Brand: Bath & Body Works

Location: Columbus, Ohio, US

Location Type: Hybrid

Job ID: 040UD

Job Area: Information Technology

Employment type: Full-time

Description

Represent the Vulnerability Management capability which is responsible for maintaining and operating services that review and identify vulnerabilities in applications, user endpoints, infrastructure, and services at Bath and Body Works (BBW). Be a member of our agile and strong team and their role will be to monitor, analyze, and report on those services to ensure they balance the security of the business, with its ability to effectively operate. Provide an opportunity to manage contracted resources and meet aggressive risk mitigation goals. Provide recommendations for improvements and optimizations based on their experience and analytical insight into current operations and processes. Improve the overall posture of BBW infrastructure by leading services to support vulnerability management, dynamic and static application testing, and penetration testing. Conduct research to identify threats and attack vectors and develop detection solutions to manage the risk. Provide information regarding any perceived weaknesses in the security program. Review investigations related to unauthorized activities on key assets and communicate findings with teammates. Ensure the efficient management and translation of Common Vulnerabilities and Exposures (CVEs) to the Risk team for triage and the CTI team for effective communication of threats. Participate in scoping the remediation actions with IT and business partners. Define parameters for scan schedule, any special configurations required, and scan policies to be applied. Lead team members through technical growth, career path, and other needs related to success in their role. Provide reporting and escalation support to leadership team. Demonstrate ability to interact with third party vendors, providing analysis and reporting. Enable tuning and troubleshooting support to improve service offerings. Telecommuting option – employee may live anywhere in the United States.

Bath & Body works is proud to offer a competitive, performance-based compensation and benefits package to our eligible associates. Benefits include a merchandise discount, a no cost mental health and well-being program, health coverage with a variety of plans to choose from, and flexible and affordable saving programs. We also offer flexible scheduling and opportunities for paid time off. Visit bbwbenefits.com for details.

Qualifications

-Bachelor’s degree in Computer Engineering, Computer Science, Information Technology or Engineering plus 2 years’ experience with identifying and understanding business applications & network landscape for security scans and assist to identify vulnerabilities in applications and servers

-2 years’ experience with conducting Triage Meetings, remediation follow-up meetings with application owners, developers and support members

-2 years’ experience with gathering and tracking DAST, Server Scan & External Penetration test reports and findings

-2 years’ experience with reporting and tracking of security issues pertaining to applications and servers

-2 years’ experience with providing remediation details & patch alternatives for effective remediation of applications and server vulnerabilities.

Telecommuting option – employee may live anywhere in the United States.

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required.

We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: Los Angeles Fair Chance In Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance.

We are an equal opportunity and affirmative action employer. We do not make employment decisions based on an inidual’s race, color, religion, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, marital status, pregnancy, genetic information, protected veteran status or any other legally protected status, and we comply with all laws concerning nondiscriminatory employment practices. We are committed to providing reasonable accommodations for associates and job applicants with disabilities. Our management team is dedicated to ensuring fulfillment of this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, associate activities and general treatment during employment. We only hire iniduals authorized for employment in the United States.