Cyber Security Manager - Vulnerability Management

Statera Talent is working on a senior Cyber Security leadership role with a well respect global financial organisation. This is a high-visibility position focused on leading a global vulnerability risk programme across a complex technology environment. It would suit someone who can combine technical security knowledge with strong risk judgement, stakeholder management and the ability to drive remediation across multiple teams.

The role sits around vulnerability risk, but it is broader than simply managing scan outputs. The successful candidate will help bring together security findings from across infrastructure, cloud, application security, open-source software and testing activity, then ensure the business has a clear, risk-based view of what needs to be prioritised. The role You will be responsible for leading and developing a vulnerability risk function across a global technology environment.

This will include improving how security findings are assessed, prioritised, tracked and reported, while working closely with security, engineering, infrastructure, application and technology teams to ensure remediation is aligned to business risk. The role will involve:
Leading a global vulnerability risk programme Bringing structure and consistency to how vulnerabilities are assessed and prioritised Overseeing findings from infrastructure, cloud, application security, open-source software and security testing Helping define what should be treated as a genuine business risk priority Working with technical teams to support effective remediation Producing clear dashboards, metrics and reporting for senior stakeholders Improving governance, process and visibility across the vulnerability lifecycle Supporting a more risk-based approach to vulnerability management What this role is really about This is not just a role focused on identifying security issues.

It is about helping the business answer:
What are our most important security weaknesses? Which issues genuinely carry the greatest business risk? Who owns the fix? How quickly are issues being remediated? What does senior leadership need to know? Relevant backgrounds We are interested in speaking with people from a range of Cyber Security backgrounds. Your current job title does not need to be specifically vulnerability focused.

The key requirement is experience owning, leading or playing a significant role in vulnerability management, remediation tracking, risk prioritisation and stakeholder reporting within a sizeable or complex organisation. Experience likely to be useful The successful candidate is likely to have experience with some or all of the following:
Vulnerability management across infrastructure, cloud and applications Risk-based prioritisation beyond basic severity scoring Security testing outputs such as SAST, DAST, SCA, infrastructure scanning, CSPM or penetration testing Working with engineering, infrastructure, application and security teams to drive remediation Executive-level reporting, dashboards, metrics or risk updates Building, improving or maturing security processes Leading people, projects or security programmes Operating in a global or enterprise-scale environment Apply today to find out more!