Vulnerability Management Delivery Manager
Job Description
Managed Security Services - Vulnerability Management Manager
Location: Multiple Locations Canada
We are:
The Accenture Cyber Fusion Centre in Toronto is a unique group of people passionate about Information Security. We are currently looking for Security Manager to work in our Security Operations Center, managing the infrastructure vulnerability assessment platforms for our clients.
Job Summary:
The primary objective of the Managed Security Services Vulnerability Management Manager is to manage the operations of the infrastructure security vulnerability assessment and management platforms of our external clients, in transition of service and/or in the run phase of the service.
Key Responsibilities:
Experience leading in a cybersecurity environment end-to-end.
Strong experience implementing a vulnerability management program including reviewing architecture, configuring scan profiles and installing of virtual or cloud scanners
Involved in vulnerability / patch management process and remediation tracking and closely work with client stake holders for closure of vulnerabilities
Problem and change management support for vulnerability management. Interact with support teams (Wintel / Linux / Network) to troubleshoot incidents / issues.
Participates in the scope definition of security scanning and VA scanners management
Implement full vulnerability lifecycle management, including identification, correlation, assessment, remediation, and reporting
Build and nurture positive working relationships with clients with the intention to exceed client expectations
Conduct vulnerability assessments and penetration tests based on client requirement
Perform threat analysis and modeling involving examination, analysis, documentation, and assessment of internal and external threats, electronic crime activity and information security risks to systems
Assigns teams and individual staff to projects of varying scope. Ensures projects are completed on time and within predefined requirements and budgets. Communicates projects status to business leadership and liaises project issues to systems leadership. Accountable for team performance within assigned projects.
Assign, monitor and review progress and accuracy of work, directing efforts and providing technical guidance on more complex issues.
Serve as a mentor and role model. Maintain the highest standards of a professional conduct
Limited travel is possible although this is not specifically a mobile role
Qualifications
Basic Qualification
Experience working with vulnerability management / threat intelligence tools such as QualysGuard / Tenable / McAfee MVM / Mandiant / Symantec Deepsight, etc.
Application code review & tool exposure CheckMarx, Fortify, IBM AppScan Source, Veracode.
Certified in common security certifications including trending EDP tools like Trend, McAfee etc.
Good understanding of SLAs and KPIs and supplier governance concepts
Knowledge of estimation technique, Good Application Security Concept (OWSAP, CWSS)
Analytical and problem-solving skills and the ability to manage multiple task
Bachelor or college degree in related field or equivalent work experience
At least 8 years of professional experience with IT Security products and services.
At least 3 years’ experience in one of our key platforms, with relevant vendor certification
Good English communication skills (written and oral), with French language ability preferred.
English is required for this position as this role will regularly interact with stakeholders across Canada, US and other countries across our Global footprint where English is the common language. Due to the significant high volume of interactions with these English-speaking stakeholders, which is inherent to this position, it is not possible to reorganize the company's activities to avoid this requirement.
Nice to have skills:
Experience with compliance regulations, such as HIPAA and PCI.
Knowledge of standard SDLC practices
IT Security Certifications like CISSP, CISM, CISA, CEH, GCIH, GCIA, OSCP, etc
Either possess (or have the ability to obtain) a Canadian security clearance for work in the government sector
Compensation at Accenture varies depending on a wide array of factors , which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation, based on full-time employment, for roles that may be hired in selected locations.
British Columbia $89,500 to $204,100