Key Roles & Responsibilities :
- Leader with deep security, data and operational experience to lead its global Attack Surface Management (ASM) organization.
- ASM consists of three functions: vulnerability management, secure configuration management and red teaming.
- By being part of this team you will have experience in each of these areas, consistent record of defining and executing those functions strategies and significantly driving down exposure within large, complex environments.
- The ASM Global Lead acts as the sole point of accountability for both the strategic direction and execution of the ASM functions.
- You will lead a large, multinational team in the execution of this function, and will liaise with asset owners within infrastructure and application delivery organizations to drive remediation of discovered exposures.
- You will have the opportunity to continue to drive the radical redesign of the ASM capability that has been started, transitioning the ASM capability from a legacy vulnerability management and secure configuration management function to a holistic platform and program for identifying, analyzing and driving the remediation of security exposures and control gaps within Credit Suisse's environment.
- You will work directly with business partners, application teams and infrastructure providers to drive the remediation of discovered exposures.
Skills Required :
- Experience with computer system vulnerability concepts and frameworks such as CVE/CPE/CWE, as well with industry leading vulnerability management platforms.
- You have direct experience in managing red team engagement, including regulatory driven engagement.
- You have direct experience in managing a complex set of global stakeholders and translating technical security risks/vulnerabilities into non-technical discussions.
- You have experience with and successful utilization of enterprise workflow platforms and specifically integration with the above-mentioned technologies
- You have experience leading large multinational teams in the delivery and execution of complex solutions in computing, data processing systems and/or information security
- You have good experience in senior level internal/external partner management and deep knowledge in information security and cyber security.
Didn’t find the job appropriate? Report this Job