Threat and Vulnerability Management Lead

Chicago, IL
Full Time
Security
Manager/Supervisor
iManage is committed to providing an excellent candidate experience and will never ask you to engage in recruitment activity via text and exclusively communicates from emails using the @imanage.com domain. If you have any concerns or questions about communications you have received, please send them to [email protected] so our team members can review.

We offer a flexible working policy that supports the health and well-being of our iManage employees. As an organization, we value collaborating and learning from our peers in person, while providing the necessary flexibility for our employees to have a meaningful work-life balance. Please reach out to learn more.

Being a TVM Lead at iManage Means…
You are excited to join a dedicated, energetic, and fast-growing global team as a TVM Lead. You will run the day-to-day TVM operations including attack surface management, vulnerability scanning, and reporting. You will then lead, track, and collaborate on remediation efforts with other teams across the globe. As the TVM Lead you will be responsible for ensuring reliable data integrations to other key operational systems and documentation of processes.

You will take ownership for leading and producing vulnerability, configuration, and coverage metrics to demonstrate remediation effectiveness and how risk is being reduced in the environment along with producing situation reports for distribution to other teams and senior leadership. This will include ensuring that vulnerability management Service Level Agreements and policies are defined, tracked and met across the enterprise and reported on.
                                                                
iM Responsible For…
  • Obtaining product specific knowledge of the firm’s key products and developing an understanding of how the underlying components are structured and how potential vulnerabilities may affect the platform.
  • Training, mentoring and leading other team members while becoming the subject matter expert in your own area and sharing that knowledge.
  • Creating and maintaining all documentation around threats and vulnerability management processes, procedures and necessary evidence for compliance.
  • Developing operational threat modeling processes, creating and documenting business process, and communicating needs inside and outside of the team.
  • Maturing, or building new, TVM SLA & KPI tracking tools to ensure team and company compliance.
  • Utilizing threat intel and analysis tools and vendors to identify, automate, manage and prioritize continually changing threats.
  • Reviewing scans and performing threat analysis of detected vulnerabilities. Partnering with other teams and management to prioritize accordingly.
  • Collaborating with asset owners and the business for timely remediation of threats and vulnerabilities.
  • Customizing reports on assessment findings and summarizing to facilitate remediation tasks for various teams.
iM Qualified Because I Have…
  • Demonstrable experience understanding security for both private and public cloud environments.
  • Experience using one, or more, of the major market-leading vulnerability management solutions such as Rapid 7, Qualys or Tenable.
  • Exposure and/or experience using container scanning systems such as Sysdig, Twistlock, Defender, etc.
  • Firm understanding of, and experience with, DevOps, SRE and SDLC methods, tooling, processes, procedures and the security needs around them.
  • High level, yet also broad, understanding of basic operating system, cloud, and network technologies.
  • 5+ years of demonstrable experience in required areas.
  • High motivation to consume, process and convert newly obtained knowledge & experience into my day-to-day work.
  • A nearly innate desire to figure things out along with the dedication to maintaining a lifelong commitment to continuous learning.
  • Excellent verbal and written communication skills, both in-person and through electronic forms.
  • Comfortability with operating under minimal supervision after being given the direction and tools and in a fast-paced environment.
  • Command of the ability to think in a non-linear, yet almost rigorously analytical, type of problem-solving mindset.
  • A strong understanding, and am able to work with, global schedules that often require non-traditional, and non-US, working hours.
Don't meet every qualification listed above? Studies show that women and people of color are less likely to apply to jobs unless they meet all qualifications. At iManage, we are committed to building a diverse and inclusive environment, and encourage everyone to show up as their full authentic selves. We welcome those that come with a growth mindset and a hunger for learning; so, if you are excited about this role but your past experience doesn't align perfectly with every qualification we encourage you to apply anyways!

iM Getting To…
  • Join a supportive, experienced team with an inclusive, encouraging, and vibrant culture.
  • Have flexible work hours that allow me to balance my ‘me time’ with my work commitments.
  • Collaborate in a modern open plan workspace, with a gaming area, free snacks, drinks and regular social events.
  • Focus on impactful work, solving complex, real challenges utilizing the latest technologies and protocols.
  • Own my career path with our internal development framework. Ask us more about this!
  • Learn new skills and earn certifications with access to unlimited courses in LinkedIn Learning.
  • Join an innovative, industry leading SaaS company that is continuing to grow & scale!
iManage Is Supporting Me By...
  • Creating an inclusive environment where I can help shape the culture not just by fitting in, but by adding to it.
  • Providing a market competitive salary that is applied through a consistent process, equitable for all our employees, and regularly reviewed based on industry data.
  • Rewarding me with an annual performance-based bonus.
  • Offering comprehensive Health/Vision/Dental/Life Insurance, and a 401k Retirement Savings Plan with a company match up to 4%.
  • Giving access to HealthJoy, a healthcare concierge service, to help me maximize my health benefits.
  • Granting enhanced leave for expecting parents; 20 weeks 100% paid for primary leave, and 10 weeks 100% paid for secondary leave.
  • Providing me with a flexible time off policy to take the time off that I need. Be it for vacation, volunteering, celebrating holidays, spending time with family, or simply taking time to recharge and reset.
  • Caring for my mental health and well-being with multiple company wellness days and free access to the Healthy Minds app for mindfulness, meditation and more.
About iManage…
iManage is dedicated to Making Knowledge WorkTM.  Over one million professionals across 65+ countries rely on our intelligent, cloud-enabled, secure knowledge work platform to uncover and activate the knowledge that exists inside their business content and communications. 

We are continuously innovating to solve the most complex professional challenges and enable better business outcomes; Our work is not always easy but it is ambitious and rewarding.

So we’re looking for people who love a challenge. People who are happiest when they’re solving problems and collaborating with the industry’s best and brightest. That’s the iManage way. It’s how we do things that might appear impossible. How we develop our employees’ strengths and unlock their potential. How we find meaning in everything we do.

Whoever you are, whatever you do, however you work. Make it mean something at iManage.

iManage provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Learn more at: www.imanage.com

Please see our privacy statement for more information on how we handle your personal data: https://imanage.com/privacy-policy/
 

#LI-Hybrid
#LI-LM1
Share

Apply for this position

Required*
Apply with
We've received your resume. Click here to update it.
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

150
Human Check*