VP - Threat Intelligence and Vulnerability Management

Position Summary

The Vice President of Cybersecurity leads our Threat Intelligence, Vulnerability Management, and Application Security programs. This role is responsible for identifying, tracking, and communicating threats and vulnerabilities that may impact the organization, our customers or our team members.

The role will oversee TVM Analyst(s) in the day-to-day understanding of information security and preferably have held positions in cybersecurity and systems administration. The role also requires an understanding of business and governance processes. This executive will be responsible for developing and executing a comprehensive strategy to proactively identify, assess, and mitigate risks across our digital ecosystem.

• Develop and execute a unified strategy for threat intelligence, vulnerability management, and application security aligned with Triumph.io's business objectives.
• Define and maintain a multi-year roadmap to enhance security posture across cloud, on-premise, and hybrid environments.
• Serve as a trusted advisor to executive leadership on emerging threats, vulnerabilities, and risk mitigation strategies.

• Lead the threat intelligence program to proactively identify and assess cyber threats relevant to Triumph.io's business and technology landscape.
• Collaborate with internal and external partners to gather, analyze, and disseminate actionable threat intelligence.
• Integrate threat intelligence into detection, response, and prevention workflows.

• Oversee enterprise-wide vulnerability discovery, assessment, prioritization, and remediation efforts.
• Ensure continuous monitoring of assets across cloud, endpoint, network, and third-party environments.
• Communicate risk-based vulnerability insights to both technical and non-technical stakeholders.

• Lead the application security program, ensuring secure development practices across the SDLC.
• Implement and manage tools for SAST, DAST, SCA, and container security.
• Partner with engineering teams to embed security into Dev Ops pipelines and CI/CD workflows.

• Partner with infrastructure, Dev Ops, risk, and compliance teams to align security initiatives with business goals.
• Define and track KPIs and metrics to measure program effectiveness and drive continuous improvement.
• Represent Triumph.io in security forums, audits, and regulatory engagements.

• Bachelor's degree in Computer Science, Information Security, or related field;
  Master's preferred.
• 10+ years of progressive experience in cybersecurity, with at least 5 years in a leadership role.
• Proven experience managing enterprise vulnerability and application security programs.
• Familiarity with threat intelligence platforms and frameworks (MITRE ATT&CK, STIX/TAXII, etc.).

• Expertise in tools such as Tenable, Qualys, Nessus, Burp Suite, Git Hub Advanced Security, and cloud-native security tools.
• Strong understanding of OWASP Top 10, SAMM, threat modeling (STRIDE, DREAD), and secure coding practices.
• Experience with AWS, Azure, and serverless security architectures.
• Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface.
• Knowledge of one or more compliance standards, including Payment Card Industry (PCI), Gramm-Leach-Bliley Act (GLBA), National Institute of Standards (NIST) or International Standards Organization (ISO).

• Exceptional communication and stakeholder management skills.
• Ability to influence cross-functional teams and drive change in a fast-paced environment.
• Strategic thinker with a hands-on approach to problem-solving.

The work environment characteristics described here may be encountered while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Moderate noise (i.e., business office with computers, phone, and printers, light traffic).
• Ability to work in a confined area.
• Ability to sit at a computer terminal for an extended period of time. Occasional stooping or kneeling may be necessary.
• While performing the duties of this job, the employee is regularly required to stand, sit, talk, hear, and use hands and fingers to operate a computer keyboard and telephone.
• Specific vision abilities are required for this job due to computer work.
• Light to moderate lifting is required.
• Regular, predictable attendance is required.

We offer Medical, Dental, Vision, Paid Time Off, 401k and much more.

Go on. Do it. Apply Today!