Senior Cyber Security Lead to define the scope, goals, and deliverables of the vulnerability management program for a crown corporation client

Our valued crown corporation client is seeking an Senior Cyber Security Lead to define the scope, goals, and deliverables of the vulnerability management program for a crown corporation client

Initial 1-year contract. Hybrid, 2 days/week of on-site work required in downtown Ottawa, ON. 7.5 hours per day, Monday to Friday.

Responsibilities:

• Define the scope, goals, and deliverables of the vulnerability management program in collaboration with senior management and stakeholders by applying subject matter expertise
• Assist with the development of a vulnerability management roadmap outlining key milestones, resource allocation, and program evolution
• Coordinate activities across multiple teams including IT, security operations, incident response, and compliance to ensure effective vulnerability management
• Analyze and prioritize vulnerabilities based on risk assessment methodologies considering exploitability, business impact, and asset criticality
• Assist with the development of risk mitigation strategies and provide recommendations to reduce the organization's risk exposure
• Communicate the status, findings, and remediation progress of vulnerability management efforts to senior management and other stakeholders
• Prepare detailed reports and presentations on vulnerability trends, risks, program effectiveness, and key performance indicators (KPIs) derived from operating level metrics and identify opportunities for growth
• Assist with the integration of vulnerability management tools with other security and IT systems to enhance automation and efficiency.
• Provide support during security incidents, ensuring vulnerabilities are promptly addressed and mitigated.
• Assist with the development and deliver training programs to educate employees and stakeholders on vulnerability management processes and the importance of maintaining a secure environment.

Must-have Skills

• 3+ years of experience with as a Lead Security Analyst or similar role creating roadmaps for Vulnerability Management & Vulnerability Assessments
• Demonstrated knowledge of Rapid7, Qualys, Tanium, Nexpose, and Microsoft Vulnerability Management