Senior Manager, IT - Vulnerability and Attack Surface Management

Posted 19 Hours Ago
Be an Early Applicant
Toronto, ON
Hybrid
Senior level
Big Data • Cloud • Food • Machine Learning • Software • Database • Analytics
We are on a journey to create a digitally-powered, agile-enterprise. Join us!
The Role
The Senior Manager for IT Vulnerability and Attack Surface Management is responsible for leading strategy and execution of vulnerability management programs. This includes identifying and remediating vulnerabilities across IT assets, overseeing security processes, and ensuring effective communication with stakeholders. The role demands a comprehensive understanding of security threats and management techniques, alongside strong leadership and technical skills.
Summary Generated by Built In

Job Description
Here at Kraft Heinz, we grow our people to grow our business, because we believe that great people make great companies. When you join our table, you can expect access to an array of holistic wellness benefits* and perks, including medical, dental and vision coverage, 7% 401(k) matching, Business Resource Groups (BRGs) to help foster diversity, inclusion, and belonging for all employees, an industry-leading total rewards package that emphasizes a high discretionary bonus.
*Benefits begin immediately upon hire for salaried employees.
Get a peek into life here at Kraft Heinz through our Instagram and TikTok channels!
Sr Vulnerability & Attack Surface Management Manager at a glance
This a critical technical leadership role within our Information Security team with end-to-end responsibility for strategy, oversight and execution of the KraftHeinz Vulnerability Management and Attack Surface Management capabilities.
What's on the menu?

  • Continuously build and execute a strategic vision for the Vulnerability and Attack Surface Management program and its capabilities in alignment with organization's Information Security and Information Technology programs, program goals and business objectives.
  • Drive all efforts necessary to ensure timely identification, analysis, and remediation of vulnerabilities across all IT assets, including applications, servers, networks, and endpoints.
  • Establish and maintain strong relationships with key stakeholders, including business capabilities, infrastructure, networking, application development, compliance, communications and other executive and non-executive leadership.
  • Continuously monitor and evaluate emerging security threats, trends, and technologies for continuous analysis and improvement of the organization's vulnerability and attack surface management capabilities.
  • Develop and implement processes for continuous attack surface monitoring and reduction, ensuring the organization's exposure to threats is continuously minimized and optimally protected.
  • Oversee the configuration, operation, and maintenance of vulnerability testing and management platforms, attack surface management technologies, and other related tooling.
  • Provide technical guidance and support for vulnerability assessments, penetration testing, and attack surface management activities


Recipe for Success: Apply Now if this sounds like you!

  • I have experience in information security, with at least 5 years in a hands-on vulnerability management and/or attack surface management role.
  • I understand the nature of vulnerabilities and weaknesses, and can articulate detection and remediation methods for vulnerabilities to technical and non-technical audiences.
  • I have expert-level understanding of vulnerability and attack surface testing and management techniques, processes and platforms.
  • I have significant experience in designing, building, testing, implementing and refining workflows of varying complexity.
  • I have strong understanding of common security frameworks (e.g., NIST, CIS, ISO).
  • I have proven experience in leading and managing security teams, with a track record of developing and executing strategic initiatives.
  • I have excellent communication, interpersonal, and leadership skills.


Please note: This job posting is just a preview of the full scope of the position. A comprehensive job description is shared upon interview.
We hope to find you a seat at our table!
Location(s)
Toronto - Queen's Quay - Headquarters
Kraft Heinz is an Equal Opportunity Employer - Underrepresented Ethnic Minority Groups/Women/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity and other protected classes. In order to ensure reasonable accommodation for protected individuals, applicants that require accommodation in the job application process may contact [email protected] for assistance.

What the Team is Saying

Sarah
Diego
Brian
The Company
HQ: Chicago, IL
38,000 Employees
Hybrid Workplace
Year Founded: 2015

What We Do

At the heart of this journey is our ambition to create an enterprise where powerful AI solutions augment humans and where small mission-based teams are in relentless pursuit to solve tangible problems for our consumers, customers, and the enterprise. That ambition requires us to create a modern cloud and data ecosystem - a one of its kind that becomes the neural network of our company. We want you to bring your tech-self to us. We use Python, R, Spark, React, Tableau, Snowflake, Azure, and others to solve the problem on hand. In-turn, you can look forward to high-impact challenges, no bureaucracy, entrepreneurial small teams, and a unique opportunity to create and build something bold, awesome, and impactful – all while honoring our 150-year heritage and a portfolio of 200 iconic and emerging brands!

Why Work With Us

Our ambition is to become a best-in-class Digital leader by making data-driven investments that drive smarter business decisions. You’ll invent the next wave of augmented intelligence products where software & humans work side-by-side to rethink every aspect of our company. You’ll make an imprint & leave your legacy on every part of our business.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Kraft Heinz Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

We also believe providing a more flexible and agile model is essential in today’s workplace. A majority of our office-based employees will be able to work remotely for up to two days each week.

Typical time on-site: 3 days a week
HQChicago, IL
United Kingdom
Canada
Netherlands
India
Learn more

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account