Senior Engineer, Vulnerability Management
3 weeks ago
At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.
The Schwab Cybersecurity Services (SCS) organization is a centralized 1st Line of Defense Center of Excellence (COE) that provides security services to advance Schwab’s security posture and enhance the protection of Schwab’s critical assets. Enterprise Vulnerability Management (EVM) is responsible for leading the identification, evaluation, and remediation of vulnerabilities across the Firm.
This Senior Vulnerability Management role functions as a technical expert in the areas of vulnerability assessment, response/treatment, and remediation tracking focused on infrastructure configuration related weaknesses. The role will be responsible for assessing the risk, facilitating timely response and appropriate treatment, and ensuring remediation through escalation processes and reporting. It requires the ability to communicate with technical and non-technical stakeholders, relay the importance of vulnerability management activities, the risks presented by findings, and potential remediation actions. This role requires working knowledge of security and network protocols, system and network administration, and configuration management.
The successful candidate will be a team player, comfortable working across a wide range of organizations and corporate functions including information technology, corporate security, vendor management, risk and audit teams, and other partners to promote vulnerability risk management practices throughout the enterprise.
Responsibilities:
- Assess, prioritize, and drive remediation or alternative treatment of vulnerabilities across technology infrastructure.
- Develop and implement strategies for remediating vulnerabilities in technology assets
- Collaborate with infrastructure operations and application support teams to drive timely response and treatment of vulnerabilities.
- Support the development and implementation of strategies to enhance and mature Enterprise Vulnerability Management processes for vulnerabilities associated with baseline configuration drift and cloud misconfigurations.
- Asses, triage, and prioritize vulnerabilities and associated remediation and mitigation activity using multiple sources of vulnerability, threat, and asset data.
- Maintain documentation repositories related to vulnerability management for use by internal staff and stakeholders.
- Educate system owners to continually improve the knowledge and skills on how best to manage security configuration, patch management and vulnerability management for company infrastructure systems.
Other duties include:
- Train and/or mentor other team members, and peers as appropriate
- Develop internal tools to increase team efficiencies and continually mature operations.
- May travel minimally as part of training and ongoing vulnerability management capability enhancements.
Required:
- Bachelor’s degree in computer science or related field or equivalent experience/certification
- 5+ years of information security and / or infrastructure experience that also includes background and knowledge of general security concepts such as defense in-depth, least privilege, etc.
- 3+ years of demonstrated knowledge of vulnerability assessments and reporting including understanding of vulnerability management methodologies and procedures, threat assessment, and remediation management. Also including knowledge of enterprise vulnerability assessment technologies, like Qualys, RiskFabric, Prisma, Imperva, or similar vulnerability solutions
Preferred:
- Ability to articulate and intimately understand technical and complex information security threats, methodologies, frameworks, technologies, and architectures.
- Knowledge of technological trends and developments in cybersecurity and technology, including latest information security technologies and services such as EDR, SOC, NDR, SIEM, SOAR, and XDR.
- Familiarity with attack and exploitation techniques involving operating systems, applications, and devices commonly seen in an enterprise environment.
- Knowledge of network fundamentals and protocols to be able to provide input into firewall, intrusion detection / prevention, penetration testing analysis and recommendations.
- Knowledge of security, service, and control frameworks, such as ISO/IEC 27001, NIST, ITIL, SOX, FFIEC, and GDPR.
- Ability to understand and manipulate large data sets to provide analysis and reporting.
- Analytical and problem-solving skills, including the ability to communicate solutions/alternatives and influence the outcome of decisions.
- Information security certifications, including Certified Information Systems Security Professional (CISSP), GIAC certification, or Certified Information Security Manager (CISM); or willingness to obtain to support job responsibilities.
- Experience working in financial services industry, working within a highly regulated environment.
In addition to the salary range, this role is also eligible for bonus or incentive opportunities.
What’s in it for youAt Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you – both today and in the future:
- 401(k) with company match and Employee stock purchase plan
- Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
- Paid parental leave and family building benefits
- Tuition reimbursement
- Health, dental, and vision insurance
-
Senior Manager, Software Engineering
7 days ago
Southlake, United States Charles Schwab Full timePosition Type: Regular Your opportunity At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. Schwab is looking for a Senior Software Development & Engineering Manager with large scale experience to join...
-
Senior Software Engineer
2 weeks ago
Southlake, United States Gate Sentry Full timeGate Sentry was founded by former Corporate leaders, property managers, and security experts who were frustrated with existing access control systems. These systems often offered all-in-one solutions that failed to address the specifics of each property type. Leveraging years of firsthand experience, our founders developed Gate Sentry, an access control...
-
Senior Software Engineer
1 week ago
Southlake, United States Gate Sentry Full timeGate Sentry was founded by former Corporate leaders, property managers, and security experts who were frustrated with existing access control systems. These systems often offered all-in-one solutions that failed to address the specifics of each property type. Leveraging years of firsthand experience, our founders developed Gate Sentry, an access control...
-
Senior Manager Security Engineering
4 weeks ago
Southlake, United States Charles Schwab Full timePosition Type: Regular Your opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. Schwab’s Cybersecurity team is a first line of defense for Schwab. The Senior Manager of Cloud Security...
-
Senior Manager, Cloud Data Platform Engineering
3 weeks ago
SOUTHLAKE, United States Charles Schwab Full timePosition Type: RegularYour opportunityThis team is in our Austin office location. At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. Are you eager to spearhead cutting-edge technological advancements in...
-
Senior Manager, Software Development
3 weeks ago
Southlake, United States Charles Schwab Full timePosition Type: Regular Your opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Senior Software Development Engineer Manager will manage platform support for key Schwab systems. This...
-
Senior Manager, Software Development
3 weeks ago
Southlake, United States Charles Schwab Full timePosition Type: Regular Your opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Senior Software Development Engineer Manager will manage platform support for key Schwab systems. This...
-
Senior Manager, Software Development
3 weeks ago
SOUTHLAKE, United States Charles Schwab Full timePosition Type: RegularYour opportunityAt Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Senior Software Development Engineer Manager will manage platform support for key Schwab systems. This...
-
Senior Cloud
4 weeks ago
Southlake, United States Charles Schwab Full timePosition Type: Regular Your opportunity At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. We are looking for a driven, results-oriented Senior Cloud & Software Applications Engineer who shares our...
-
Senior Mainframe Engineer
2 months ago
Southlake, United States Charles Schwab Full timeYour Opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us "challenge the status quo" and transform the finance industry together. Schwab's Cybersecurity Services (SCS) purpose is to safeguard and enable the firm to cultivate client trust. The Identity & Access...
-
Senior Manager
3 weeks ago
SOUTHLAKE, United States Charles Schwab Full timePosition Type: RegularYour opportunityAt Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Cloud Services organization within Schwab Technology Services (STS) empowers Schwab’s development teams...
-
Cyber Software Engineer
2 weeks ago
Southlake, United States Lockheed Martin Corporation Full timeJob ID: 669571BR Date posted: Jul. 11, 2024 Program: Strategic Pipeline Description: You will be a Cyber Software Engineer in the Program Protection Organization. Our organization oversees all aspects of Anti-Tamper and embedded Cybersecurity across Missiles and Fire Control. We are chartered with providing the skills and innovative technologies to develop,...
-
Senior Software Engineer
1 month ago
Southlake, United States Goosehead Insurance Agency Full timeAbout GooseheadSince 2003, Goosehead Insurance has been disrupting the insurance industry by giving clients the power of choice, utilizing a smarter marketing approach, and delivering world class service. This is all powered by our focus on hiring and retaining extraordinary people. Our clients trust us with their most valuable possessions so, we’re more...
-
Senior Software Engineer
1 month ago
Southlake, United States Goosehead Insurance Agency Full timeAbout Goosehead Since 2003, Goosehead Insurance has been disrupting the insurance industry by giving clients the power of choice, utilizing a smarter marketing approach, and delivering world class service. This is all powered by our focus on hiring and retaining extraordinary people. Our clients trust us with their most valuable possessions so, were more...
-
Senior Software Engineer
1 month ago
Southlake, United States Goosehead Insurance Agency Full timeAbout GooseheadSince 2003, Goosehead Insurance has been disrupting the insurance industry by giving clients the power of choice, utilizing a smarter marketing approach, and delivering world class service. This is all powered by our focus on hiring and retaining extraordinary people. Our clients trust us with their most valuable possessions so, we’re more...
-
Test Engineering Manager
2 months ago
Southlake, United States HumCap, Inc. Full timeJob DescriptionJob DescriptionTest Engineering Lead/Manager – Southlake, TX Responsibilities:• Responsible for leading/individually contributing to the Test Engineering team in the support of Sales and Production with assigned customer projects to meet customer requirements.• Development of test strategies / systems - Development of customer-specific...
-
Senior Manager, Security Engineering
4 weeks ago
Southlake, TX, United States Charles Schwab Full timePosition Type: RegularYour opportunityAt Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Schwab Cybersecurity Services (SCS) organization is a centralized 1st Line of Defense Center of Excellence...
-
Software Engineer
2 weeks ago
Southlake, United States Charles Schwab Full timeYour opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us 'challenge the status quo' and transform the finance industry together. In this role you will develop coding and design standards for the Advice Suite application and participate in architecture designing and...
-
Senior Manager, Risk Analytics/Modeling
3 weeks ago
Southlake, United States Charles Schwab Full timeAt Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.The Transaction Risk Oversight and Monitoring (TROM) is a department within the Financial Crimes Risk Management Enterprise. Our charter is to protect...
-
Senior Manager, Fraud Platform Operations
7 days ago
Southlake, United States Charles Schwab Full timeYour Opportunity At Schwab, you're empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us "challenge the status quo" and transform the finance industry together. In 1st Line of Defense (1LOD), the Transaction Risk Interdiction & Detection (TRIAD) team owns an integrated risk management strategy that...
