Vulnerability Management Service Lead

This job is no longer active. View similar jobs.

POST DATE 11/15/2019
END DATE 11/29/2019

Pacific Life Insurance Company Newport Beach, CA

Newport Beach, CA
AJE Ref #
Job Classification
Full Time
Job Type
Company Ref #
Entry Level (0 - 2 years)
High School Diploma or GED


As the lead for our Vulnerability Management Service you'll be helping us make sure we can identify and assess vulnerabilities across our enterprise. In this role you'll have the opportunity lead the day to day operations of the team and define the strategy to improve our capabilities and maturity. Having previous experience either running a Vulnerability Management program, you'll understand how to build a program that is effective and efficient and doesn't get stuck chasing resolution of individual low priority vulnerabilities.

*Lead the daily operations of our Vulnerability Management Service covering Vulnerability and Patch Management, Penetration testing, Dynamic and Static Application Security Testing (DAST/SAST), and Configuration Management.
*Coordinate a global vulnerability management program. Perform recurring vulnerability scans, assess severity, and coordinate remediation.
*Coordinate third party penetration tests.
*Provide Static Application Security Testing (SAST) and Dynamic Applications Security Testing (DAST) services to development teams helping them validate the security of their applications.
*Extend Configuration Management capabilities to our business customers.
*Develop, maintain, and track service metrics (KRIs/KPIs) for the Vulnerability Management Service.
*Prioritize, plan, and implement service initiatives to increase program maturity and coverage of newer technologies such as Vulnerability/Configuration Management integration into CI/CD pipelines, VM/CM assessment of Containers, co-development of blue team / red team adversary simulation testing, and development and implementation of a Vulnerability Disclosure program.
*Socialize and demonstrate the value of the Vulnerability Management Service to our internal stakeholders.
*Align and support execution of the Information Security Office's Vision Strategy Execution and Management (VSEM) goals and objectives.


*8+ years of experience in Information Security.
*2+ years of experience leading or performing in a senior role within a Vulnerability Management program.
*Experience using Qualys is preferred. For this level role the job is less about running a specific tool and more about the ability to provide a capability.
*Prior experience with coordination of third-party penetration tests. First hand experience conducting actual penetration testing engagements is even better.
*Prior experience with SAST/DAST tooling. Experience implementing a program and or experience with White Hat Sentinel is preferred.
*Prior experience with Configuration Management.
*Solid understanding of Application Security and common vulnerabilities.
*Communication skills are critical. The right candidate will be able to engage senior leaders serving as a representative of the Vulnerability Management Service. They will also be able to carefully balance interactions with our business customers helping them to identify vulnerabilities while also providing the healthy tension necessary to ensure remediation is being completed.
*Relevant certifications such as CEH, CISSP, GPEN, GXPN, and OCSP

font #LI-DD1 /font
For more than 150 years, Pacific Life has offered innovative products and services including life insurance, annuities, and mutual funds, along with a variety of investment products, all of which provide The Power to Help You Succeed. We firmly believe each employee plays a part in our continued growth and success, and we pride ourselves in providing a work environment that is challenging, inclusive, collaborative, and results-oriented. With a powerful past and a strong future, Pacific Life offers an environment where you're empowered to achieve your personal best. In return, we look to your passion and insight to help us grow. For additional company information, including current financial strength ratings, visit the Pacific Life team and watch your career grow! We offer a competitive compensation and benefits package that includes: * Competitive salary and bonus program * Medical, dental, and vision as part our commitment in investing in the health and wellbeing of our employees * Two retirement savings plans: 401k savings plan with company match and Company Retirement Contribution (company-paid) * Generous vacation time and holiday pay * And much more!Pacific Life Insurance Company is an Equal Opportunity /Affirmative Action Employer, M/F/D/V. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact a Human Resources Representative at Pacific Life Insurance Company.