Fifth Third Bank
Senior Information Security Engineer - Vulnerability Management
This job is now closed
Job Description
- Req#: R60367
- Manage reporting and timely remediation for vulnerabilities from infrastructure scans, cloud, containers, penetration testing, source code (SAST/SCA) and Bug Bounty etc.
- Report and track metrics, KPIs and KRIs with proactive escalations to maintain risk within acceptable appetite.
- Communicate effectively to engage and collaborate with key stakeholders on remediation, provide guidance, perform escalations, and follow through vulnerability closure.
- Perform data analysis at scale and drive informed decisions with vulnerability prioritization and remediation campaigns.
- Design and improve dashboards to enable Self-Service for remediation teams.
- Manage requests for False Positives, Exceptions and Risk Acceptance for vulnerabilities.
- Prioritize emerging threats and 0days as they surface through Threat Intelligence
- Consistently seek opportunities to improve EVM processes and demonstrate measurable impact towards reducing inefficiencies through implementation of Lean practices.
- Stay abreast of emerging technologies, actively engage in continuous learning to master new skills, and contribute to culture of continuous improvement and professional growth.
- If local to office, collaborate in-person periodically to build network and drive Information Security awareness.
- If not local to office, periodically travel to Headquarters for collaboration, team building, and training.
- At least 4 years of related hands-on experience in Vulnerability Management or IS Engineering.
- Ability to self-manage time, manage assigned workload, and drive tasks with minimal to no oversight.
- Ability to translate business requirements and strategic goals into project plans with well-defined engineering tasks to ensure execution.
- Intermediate technical expertise in Information Security with demonstrated experience in researching and triaging emerging threats, assessing asset impacts, and communicating criticality effectively.
- Strong understanding of security concepts, best practices, and risk assessments.
- Skilled in effective oral and written communication, including presentations to Senior management, various levels of business and IT stakeholders, and technical resources.
- Strong documentation and governance skills which can be leveraged to create runbooks, respond to audit requests, and create broadcast communications for dissemination to application teams.
- Strong analytical and proactive problem-solving skills to identify and address issues before they escalate.
- Bachelor’s degree in computer science/information systems.
- Experience working with scripting (Python) is a plus.
- Broad IT and Networking work experience is a plus.
- Industry Standard Certifications such as, but not limited to: CompTIA Security+, CISSP, CISM, GIAC and AWS are preferred.
Make banking a Fifth Third better®
We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.GENERAL FUNCTION:
The Senior Information Security Engineer on the EVM Remediation team will be supporting the continuous vulnerability remediation process and reduce Fifth Third Bank’s attack surface across cloud and traditional infrastructure, endpoints, and applications. This role is responsible for managing vulnerabilities from various scanning tools, analyzing, prioritizing, and communicating relevant, actionable information across the bank and our lines of business (LOBs). This role will also undertake project deliverables as needed to contribute to the maturity of the Enterprise Vulnerability Management program.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.
About the company
Fifth Third Bank is a bank headquartered in Cincinnati, Ohio, at Fifth Third Center.
Notice
Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.
Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.
An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.