Vulnerability Management Program Leader

About GlobalFoundries:

GlobalFoundries is a leading full-service semiconductor foundry providing a unique combination of design, development, and fabrication services to some of the world’s most inspired technology companies. With a global manufacturing footprint spanning three continents, GlobalFoundries makes possible the technologies and systems that transform industries and give customers the power to shape their markets. For more information, visit www.gf.com.

Summary of Role:

The Vulnerability Management Program Leader is responsible for managing the portfolio of software vulnerabilities across the technology stack. This management involves driving remediation with the application teams, producing metrics for senior leadership, and maintaining exceptions where necessary.

Essential Responsibilities:

• Serve as administrator of the GlobalFoundries Qualys account and ensure the operation of vulnerability scans, reports, and analytics
• Maintain a robust suite of metrics and KPI’s related to vulnerability remediation, asset visibility, and security agent deployment health
• Coordinate vulnerability remediation with application owners and operations teams
• Drive installation and remediation of critical security agents (VM, EDR, DLP, etc.)
• Develop and maintain a robust risk model for infrastructure in order to prioritize remediation.

Other Responsibilities:

• Perform all activities in a safe and responsible manner and support all Environmental, Health, Safety & Security requirements, and programs.

Required Qualifications:

• Bachelor’s Degree in Information Security or related discipline.
• Minimum 5 years of related experience   
• Applicant must be a U.S. citizen, lawful permanent resident of the U.S., Or a protected individual as defined by 8 U.S.C. 1324b(a) (3)
• Solid understanding of network technologies and protocols    
• Excellent communication skills   
• Comfortable with directing and leading the work of others.
• Ability to prioritize, schedule and track to deadlines individual work and the work of others
• Travel - Up to 10%
• Fluency in English Language – written & verbal.

Preferred Qualifications:

• Experience with Qualys or other comparable vulnerability management platforms
• Working knowledge in the Semiconductor industry   
• Excellent technical documentation skills   
• Project management skills - i.e., the ability to innovate and execute on solutions that matter; the ability to navigate ambiguity.
• Strong written and verbal communication skills.
• Strong planning & organizational skills.

Expected Salary Range

The exact Salary will be determined based on qualifications, experience and location.