Information Protection Senior Manager - HIH - Evernorth
Cigna
Senior Manager of Penetration Testing
Job Description:
The Senior Manager of Penetration Testing is responsible for leading and managing the penetration testing program for the organization, integrating security best practices, and ensuring robust security measures are in place. This includes developing and implementing policies and procedures for conducting penetration tests, identifying vulnerabilities, and working with various teams to mitigate identified risks. The Senior Manager will oversee the day-to-day activities of the penetration testing team, including scheduling and conducting regular tests, monitoring security alerts, and coordinating with other departments to ensure vulnerabilities are properly addressed.
The ideal candidate for this position will have a strong background in information security, with extensive experience in penetration testing and a deep understanding of security best practices and industry standards. They will also have strong leadership and management skills, and the ability to effectively communicate and collaborate with other teams and departments.
Key Responsibilities:Develop and implement policies and procedures for conducting penetration tests and identifying vulnerabilities.Shape and grow the penetration testing strategy to empower teams to adopt a culture of proactive security through the design and implementation of flexible governance mechanisms, processes, and technologies.Cultivate and maintain relationships with cross-functional teams at varying organizational levels, with the ability to lead multi-stakeholder discussions, build consensus, and influence leaders toward positive outcomes.Demonstrate the ability to strengthen security posture, reduce risk, and improve overall security within the organization using Key Performance Indicators (KPIs).Oversee the day-to-day activities of the penetration testing team to promptly identify, assess, prioritize, remediate, and report on vulnerabilities discovered through penetration testing.Communicate with leadership and stakeholders on the status of the penetration testing program, including accomplishments, next steps, blockers, and risks.Stay current with the latest security trends, threats, and best practices to ensure the program is effective and efficient.Support cross-functional development teams to improve and manage security risks and compliance requirements.Leverage penetration testing metrics to identify skill gaps and partner with education and awareness teams to develop tailored training curriculamQualifications:Bachelor's degree in information security, computer science, or a related field. Masters degree preferred.7 years of experience in information security, penetration testing, vulnerability management, or a related position as a Leader or Manager of people.Experience with managing projects, leveraging Agile and/or DevOps methodologies.Experience with penetration testing tools and techniques, including manual and automated testing.Proficient in MS Office products, particularly PowerPoint, SharePoint, Word & Excel.Good analytical and problem-solving skills, with experience using automation to improve process efficiency.Strong understanding of security best practices and industry standards.Strong leadership and management skills.Excellent communication, interpersonal, and collaboration skills.Have a ‘can do’ positive attitude and be comfortable in high-pressure situations.
Job Description:
The Senior Manager of Penetration Testing is responsible for leading and managing the penetration testing program for the organization, integrating security best practices, and ensuring robust security measures are in place. This includes developing and implementing policies and procedures for conducting penetration tests, identifying vulnerabilities, and working with various teams to mitigate identified risks. The Senior Manager will oversee the day-to-day activities of the penetration testing team, including scheduling and conducting regular tests, monitoring security alerts, and coordinating with other departments to ensure vulnerabilities are properly addressed.
The ideal candidate for this position will have a strong background in information security, with extensive experience in penetration testing and a deep understanding of security best practices and industry standards. They will also have strong leadership and management skills, and the ability to effectively communicate and collaborate with other teams and departments.
Key Responsibilities:Develop and implement policies and procedures for conducting penetration tests and identifying vulnerabilities.Shape and grow the penetration testing strategy to empower teams to adopt a culture of proactive security through the design and implementation of flexible governance mechanisms, processes, and technologies.Cultivate and maintain relationships with cross-functional teams at varying organizational levels, with the ability to lead multi-stakeholder discussions, build consensus, and influence leaders toward positive outcomes.Demonstrate the ability to strengthen security posture, reduce risk, and improve overall security within the organization using Key Performance Indicators (KPIs).Oversee the day-to-day activities of the penetration testing team to promptly identify, assess, prioritize, remediate, and report on vulnerabilities discovered through penetration testing.Communicate with leadership and stakeholders on the status of the penetration testing program, including accomplishments, next steps, blockers, and risks.Stay current with the latest security trends, threats, and best practices to ensure the program is effective and efficient.Support cross-functional development teams to improve and manage security risks and compliance requirements.Leverage penetration testing metrics to identify skill gaps and partner with education and awareness teams to develop tailored training curriculamQualifications:Bachelor's degree in information security, computer science, or a related field. Masters degree preferred.7 years of experience in information security, penetration testing, vulnerability management, or a related position as a Leader or Manager of people.Experience with managing projects, leveraging Agile and/or DevOps methodologies.Experience with penetration testing tools and techniques, including manual and automated testing.Proficient in MS Office products, particularly PowerPoint, SharePoint, Word & Excel.Good analytical and problem-solving skills, with experience using automation to improve process efficiency.Strong understanding of security best practices and industry standards.Strong leadership and management skills.Excellent communication, interpersonal, and collaboration skills.Have a ‘can do’ positive attitude and be comfortable in high-pressure situations.
About Evernorth Health Services
Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.
Por favor confirme su dirección de correo electrónico: Send Email