Senior Manager Cyber Defense Continuous Assurance

Zions Bancorporation, N.A.
Midvale, UT
13 Feb 2025

Vacancy expired!

Zions Bancorporation is currently seeking a

Senior Manager Cyber Defense Continuous Assurance as part of our Enterprise Information Security department. Enterprise Information Security (EIS) is integrated with the Enterprise Technology and Operations division (1100+ technical people) at Zions Bancorporation. EIS is responsible for enabling secure innovation and business growth for 10,000+ employees across 11 states. EIS is undergoing rapid growth and we’re focused on creating a relevant program that will enable our organization’s long-term success. What’s great about our department is that we laugh with each other, have Executive and Board level visibility and support for our work, and are driving highly visible, enterprise-wide initiatives. We’re focused on creating business value and are seeking like-minded professionals to join our team!

The scope and impact of your work as a Senior Manager Cyber Defense Continuous Assurance:
  • Lead a team of skilled analysts and engineers to improve vulnerability management lifecycle processes, including discovery, assets prioritization, vulnerability assessment, reporting, remediation, and validation.
  • Drive and oversee the development of vulnerability management (playbooks, run books, reporting, metrics to include key risk indicators, and executive level presentations).
  • Drive program maturity, reducing the time to vulnerability remediation by integrating technology platforms, automating processes, providing actional vulnerability remediation guidance.
  • Identify opportunities to collaborate across cyber teams and optimize efficiencies to reduce the level of effort, costs, and risks across the threat landscape.
  • Develop automation, orchestration, and scripting to reduce manual processes, improve overall efficiency while also enabling new capabilities to meet rapidly changing needs
  • Scope, plan, and facilitate vulnerability assessment and penetration testing technical assessments.
  • Build relationships and serve as a liaison between system/application owners and the CVM team.
  • Mentor team members in performing vulnerability risk management engagements.
  • Lead Security Operations Projects for improvement and new capabilities
  • Serve as an advisor, raising awareness of vulnerabilities, exposure, and business impact to enterprise systems.
  • Provide key input into information technology and cybersecurity strategies regarding asset management (especially end-of-life system management), application rationalization, information security control design and testing, risk assessment, threat intelligence, and other cybersecurity domains.

    • Your experiences and skills:
    • 8 plus years of experience with vulnerabilities, hacking techniques and hacking tools, application development, data analytics and penetration testing; combination of education and experience is acceptable
    • Demonstrated experience managing a process delivery team to achieve defined targets for service levels, efficiency and quality, with at least two 5 years directly supervising others
    • Broad, current knowledge of cybersecurity domains, technologies, and vendor capabilities
    • Strong communication and reporting skills, including business presentations and ad-hoc data manipulations, clean-ups, and reporting using large complex data sets for rapid security responses.
    • Understanding of cybersecurity risk assessment, third-party risk management, and related processes and documentation
    • Strong technical skills related to at least one of the following areas: information security, network security, Windows security, UNIX/Linux security, and web application security
    • Knowledge of system and/or web application vulnerabilities and risk assessment methodologies such as Common Vulnerability Scoring System (CVSS) or OWASP Risk Rating Methodology
    • An understanding of mapping and scanning applications and systems, including port scanning, identifying services and configurations, spidering, application flow charting, and session analysis.
    • Bachelor’s degree in Computer Science, Business Administration or equivalent, preferred
    • Certified Ethical Hacker (CEH), GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Offensive Security Certified professional (OSCP), or other related security certifications preferred but not required

    Location:This position requires regular face-to-face interaction with teams, business stakeholders, and executives in the Salt Lake City, Utah, area. We will consider candidates in the area or able to relocate to the area. Zions Bancorporation is transforming what it means to work for a financial institution. We operate in a fast-paced, information-driven environment, which means we need people who bring diverse experiences, perspectives, and expertise to meet ever-changing demands. Your ability to adapt, learn innovate and collaborate with a dynamic team helps us provide exceptional service to our customers and communities. We are committed to helping our employees grow, develop and advance in their career. Our Workforce of the Future, DEI and UpSkilling initiatives allow you to network across the organization, volunteer in our community, and build your technical and soft skills. We believe that investing in your success and well-being is an investment in our customers and our business. Together we are building a culture that values diversity, celebrates growth and creates a space of belonging for all our team members. Our people are what set us apart and make us great.

    Apply now if you have a passion for impactful outcomes, enjoy working collaboratively with co-workers, and want to make a difference for the clients and communities we serve.
    • ID: #49176689
    • State: Utah Midvale 84047 Midvale USA
    • City: Midvale
    • Salary: $150,000 - $200,000
    • Job type: Permanent
    • Showed: 2023-02-13
    • Deadline: 2023-04-02
    • Category: Et cetera