Returning Candidate?

Info Security Remediation Manager

Info Security Remediation Manager

Job ID 
10420
Type 
Regular Full-Time
Company 
Fred Hutchinson Cancer Research Center
Location 
US-WA-Seattle
Category 
Information Technology

More information about this job

Overview

Cures Start Here. At Fred Hutchinson Cancer Research Center, home to three Nobel laureates, interdisciplinary teams of world-renowned scientists seek new and innovative ways to prevent, diagnose and treat cancer, HIV/AIDS and other life-threatening diseases. Fred Hutch’s pioneering work in bone marrow transplantation led to the development of immunotherapy, which harnesses the power of the immune system to treat cancer. An independent, nonprofit research institute based in Seattle, Fred Hutch houses the nation’s first cancer prevention research program, as well as the clinical coordinating center of the Women’s Health Initiative and the international headquarters of the HIV Vaccine Trials Network. Careers Start Here.

 

The Fred Hutch Information Security team is looking for a high energy Security Remediation Manager to focus on a programmatic approach to the remediation of identified security vulnerabilities across the enterprise. This position will be a highly visible member and representative of the Information Security function.

 

Engaging key project, process and engineering teams through the Fred Hutch environment requires strong project management, collaboration and security skillsets. Driving down security vulnerabilities that are developed through multiple sources throughout the stack in an organized and disciplined way, the incumbent will effectively engage our technology and business teams in a proactive manner in order to systematically close down security vulnerabilities.

 

This role will be a key influencer and evangelist for the security function and will partner closely with multiple teams within Fred Hutch as well as key partners outside of the organization. This is a new role and an awesome opportunity to build a program that has true impact from the ground level. You will be closely supported by the Information Security team and peer organizations, but will have the freedom to develop this function using your unique blend of skills and experience.

Responsibilities

  • Utilize your PM and collaboration skill sets to develop a Security Remediation Program that drives down identified security vulnerabilities in a systematic and prioritized manner
  • Collaborate closely with engineering, process and project management teams as well as asset owners to develop actionable remediation solutions for security threats and vulnerabilities
  • Develop “metrics that matter” that effectively displays progress; collaborate closely with the Risk Assessment function to help tell a data driven story about recurring security risks
  • Relentlessly Move the Security Needle: Prioritize remediation of known vulnerabilities across the enterprise and be the driving force to eliminate them! 

Qualifications

  • Strong Project & Program Management skills (road-mapping, task identification, prioritization, progress tracking and collaborative documentation)
  • Creative self-starter with a willingness to learn and adapt with pace of work environment
  • Ability to work efficiently and independently with minimal supervision and guidance
  • Ability to develop metrics and Key Performance Indicators and evangelize them
  • Ability to interface effectively with external partners and close peer teams
  • Must be able to simplify security and technical concepts for business and technology teams
  • Detail-oriented and proficient in written and oral communications
  • Strong knowledge of information security and compliance methodology 
  • Security engineering, software development, technical Program Management, security operations experience desired 
  • Demonstrated organizational and communications skills

Work Experience and Education:

  • A minimum of 3 years of demonstrated experience is required, 5+ is preferred; however, all equivalent experience will be considered
  • Bachelor's degree in computer science, information systems, business administration, or related field or comparable work experience required
  • Strong working knowledge of information security frameworks, SDL, network and identity isolation fundamentals preferred
  • Understanding of Scrum & Kanban methodologies preferred
  • Super positive and high energy personality!
  • Security certifications desirable

Our Commitment to Diversity

We are committed to cultivating a workplace in which diverse perspectives and experiences are welcomed and respected. We are proud to be an Equal Opportunity and VEVRAA Employer. We do not discriminate on the basis of race, color, religion, creed, ancestry, national origin, sex, age, disability, marital or veteran status, sexual orientation, gender identity, political ideology, or membership in any other legally protected class. We are an Affirmative Action employer. We encourage individuals with diverse backgrounds to apply and desire priority referrals of protected veterans. If due to a disability you need assistance/and or a reasonable accommodation during the application or recruiting process, please send a request to our Employee Services Center at escmail@fredhutch.org or by calling 206-667-4700.