Cybersecurity Specialist

At Dow, we believe in putting people first and we’re passionate about delivering integrity, respect and safety to our customers, our employees and the planet.

*
* About the role:

**** Dow
* * has an exciting opportunity for a
** Cybersecurity Vulnerability Specialist
** located in Midland, MI or Houston, TX. This role is responsible for overseeing the identification, assessment, and driving remediation of security vulnerabilities across the Dow’s technology infrastructure. This role involves managing vulnerability scanning tools, coordinating with IT and security teams, and ensuring timely mitigation of risks to protect the organization’s digital assets.

** Responsibilities**
* ** Vulnerability Program Execution & Improvement**  + Assist in planning, implementing, and continuously improving the vulnerability management program.  + Support automation and optimization of the vulnerability lifecycle, including data ingestion, normalization, and compliance metrics.
* ** Assessment & Analysis**  + Conduct regular vulnerability assessments using automated tools and manual techniques across infrastructure and applications.  + Review and analyze vulnerability data from various sources (e.g., internal/external scans, penetration tests) to determine risk ratings and business impact.  + Perform recurring and on-demand scanning of corporate and cloud environments.
* ** Remediation & Collaboration**  + Prioritize vulnerabilities based on risk and coordinate remediation efforts with IT, Dev Ops, system owners, and application teams.  + Provide support and resolution for remediation issues and validate post-remediation effectiveness.  + Communicate risks and recommend cost-effective security controls to business stakeholders.
* ** Monitoring, Reporting & Compliance**  + Develop and maintain dashboards and metrics to track vulnerability trends and remediation progress.  + Ensure scan results are appropriately reported and integrated into relevant systems.  + Ensure compliance with regulatory and industry standards (e.g., NIST, ISO 27001, PCI-DSS).
* ** Knowledge Sharing & Incident Response**  + Stay current with emerging threats, vulnerabilities, and security technologies relevant to the environment.  + Provide guidance and training on secure configurations and best practices.  + Participate in incident response activities related to exploited vulnerabilities.
** Qualifications
* ** A minimum of a bachelor’s degree or relevant military experience at or above a U.S. E5 ranking or Canadian Petty Officer 2nd Class or Sergeant OR 5 years relevant experience in lieu of a Bachelor's degree.
* Strong understanding of vulnerability management frameworks and tools.
* Minimum of 2 years relevant experience required.
* Experience in cybersecurity, vulnerability management, or incident response required.
* Knowledge of common vulnerabilities and exposures (CVEs), CVSS scoring, temporal scoring and threat modeling.
* Experience with patch management processes and secure system configurations.
* Familiarity with operating systems (Windows, Linux), networking, and cloud environments (i.e. Azure).
* Ability to interpret vulnerability scan results and communicate technical risks to non-technical stakeholders.
* Strong analytical, problem-solving, and organizational skills.
* Excellent communication and collaboration abilities.
* Relevant certifications (e.g., CISSP, CEH, OSCP, CompTIA Security+) are a plus.
* A minimum requirement to work legally in the country for which you are applying. No visa sponsorship/support is available for this position, including for any type of permanent residency (green card) process.
** Your Skills**
* ** Risk Management**:
The ability to identify, assess, and prioritize risks followed by coordinated efforts to minimize, monitor, and control the probability or impact of unfortunate events.
* ** Security Technologies**:
Proficiency in tools and platforms used to detect, prevent, and respond to cybersecurity threats (e.g., vulnerability scanners, endpoint protection, SIEM).
* ** Critical Thinking**:
The capacity to analyze complex data, identify patterns, and make informed decisions.
* ** Cyber Risks**:
Understanding of…