Skip to content

Senior Manager, Vulnerability Research & Management

General Information

Ref #:

20220030979

Travel Amount Required:

Up to 25%

Job Type:

Regular-Full Time

Location:

Weston - Florida - United States

Description & Qualifications

Description

The Sr. Manager is responsible for leading all research and management of vulnerabilities across UKG. You will lead, manage, develop, and grow a highly skilled team who is responsible for understanding technical vulnerabilities, their risk and probability of impact to the organization, as well as tracking identified vulnerabilities throughout their lifecycle. Candidates must be able to prepare, analyze and present a variety of security metrics and reports and identify recommendations using a risk-based approach.

If you enjoy working in a rapidly changing global organization, this position will provide you with a great opportunity to work with high performing skilled professionals and teams.

Qualifications

Primary/Essential Duties and Key Responsibilities:

• Lead enterprise-wide vulnerability research and management projects and initiatives.
• Continuously drive the coverage and visibility of the vulnerability research and management program.
• Direct and manage a team of vulnerability security researchers and analysts which research, map and provide impact assessments to identify, alert, prioritize and mitigate weaknesses in our technologies and environments.
• Identify areas of improvement, and sponsor projects to drive enhancements on automation, metrics quality and coverage.
• Serve as the functional subject matter expert for discussion of application, cloud and infrastructure vulnerabilities, prioritization, and remediation.
• Directs and oversees work activities of team; empowers staff in the successful performance of their tasks and responsibilities while encouraging innovation.
• Ensure all activities are properly documented and updated.
• Respond to any internal or external audit and security compliance initiatives that relate to vulnerability tracking.
• Clearly communicate vision, deliverables, and project status to management and key technical and business stakeholders.
• Influence change across the organization to continuously enhance our security posture.

Knowledge, Skills and Abilities
• Critical thinking
• Excellent leadership, analytical, innovative thinking, problem solving, communication, and collaboration skills
• Results driven
• Able to operate with autonomy and independently
• Results oriented, high energy, self-motivated

Required Qualifications:
• Minimum of five (5) years of experience in a security management role
• Minimum of five (5) years of experience with vulnerability management lifecycle
• Hands on knowledge of application and infrastructure vulnerability scanning tools (e.g., Rapid7, Nessus, Qualys, Checkmarx, Fortify, etc.)
• Working knowledge of OWASP Top 10
• Experience in driving discussion and consensus involving cross functional teams (including remote and offshore) over security recommendations and planned actions.
• Technical background required in systems administration or programming to understand the characteristics and exploitation vectors for vulnerabilities being reported.
• Previous experience in analyzing data to present relevant metrics to remediation stakeholders and leadership.
• Excellent written and verbal communication skills.
• Has good organizational and interpersonal skills and experience in interacting successfully with both technical and non-technical people.
• Demonstrated ability to work well independently with little input, and as a part of a team.



Preferred Qualifications:

• Previous experience with vulnerability management in Cloud environments.
• Preferred certifications: GMON, GXPN, GPEN, GWAPT, OSCP, GCIH or OSWE.
• Demonstrate knowledge of IT security / hardening best practices; including but not limited to operating systems, web applications, and network devices.
• Bachelor’s Degree in Information Systems, Computer Science or related discipline or equivalent work experience.
#LI-Hybrid

Company Overview

Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at www.ukg.com/careers

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws. 

View The EEO Know Your Rights poster and its supplement. 

View the Pay Transparency Nondiscrimination Provision

UKG participates in E-Verify. View the E-Verify posters here.

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.

Apply