Trwa ładowanie. Prosimy o chwilę cierpliwości.
State Street Bank Poland
Data aktualizacji: 2022-09-30
Kraków, małopolskie
Bankowość, IT, Inżynieria
Data aktualizacji: 2022-09-30 Aplikuj
Security Engineering Manager - Vulnerability Remediation
Location: Kraków

Job Description

As a Security Engineering Manager within the global Security, Compliance & Observability department in Technology Platform Engineering & Operations organisation, you will own and oversee the delivery of a Security Product to satisfy customer needs, regulatory requirements and drive the innovation within relevant people, process and technology areas.

This global role has a unique opportunity to shape the future of an enterprise-wide vulnerability management programme in a very large, heterogenous environment comprising of hundreds of thousands of IT assets across on-prem and cloud in a leading financial services company with $40T+ of assets under custody. The role combines technical expertise with people management to solve complex and challenging security problems at scale and drive the technical delivery of Security Products, as well as contributes to the overall Product vision and roadmap working alongside Security & Compliance Product Manager. You will also manage a Scrum Team, host all Scrum ceremonies and invest in further development of your direct reports by conducting regular 1-2-1s, mentoring, performance reviews or training sessions to attract and retain the top talent.

We offer flexible working and remote working options and don’t expect you to be in the office 5 days a week, but can if that is what you prefer. Upon submission and acceptance of your CV we will look to communicate with you quickly and recruit via a panel, which if you’re right, the job offer will come quickly. We realise that waiting or never getting a response is not a wanted part of applying for a new job.


 What you’ll do:

  • directly manage a Scrum Team of Vulnerability Remediation Engineers
  • work with key stakeholders on technical delivery objectives, backlog, roadmaps, visions, continuous improvement etc. in the area of Vulnerability Management
  • oversee and coordinate the remediation of vulnerabilities across the infrastructure and applications
  • drive the innovation, automation and orchestration within Vulnerability Management area through the development and onboarding of custom and Commercial-off-the-shelf cybersecurity tools
  • stay on top of the current cyber threats and partner with Threat Intelligence, Red Team, Purple Team and Vulnerability Management to effectively prioritize remediation activities
  • drive the closure of regulatory, external and internal audit findings related to vulnerability and patch management
  • partner with GRC, IT Asset Management and any other teams to identify and close process and documentation gaps
  • support, mentor and help in professional development of direct reports
  • recruit and retain the top talent
  • establish and report on KPIs, KRIs

Who you are:

  • previous experience in managing Cybersecurity teams, preferably in Vulnerability Management, Patch Management or wider Security Operations area
  • minimum 7 years of overall industry experience with proven track record of delivery in Cybersecurity in big, matrix organisations
  • good understanding of and previous hands-on experience in any of the following: TCP/IP, Operating Systems, servers, databases, network devices, web applications, cloud, virtualization, system administration
  • extensive experience working with tools like e.g. Qualys VMDR,, Rapid7, Tanium, SCCM, IBM BigFix, ServiceNow, Kenna Security, Vulcan Cyber, Veracode, Sonarqube, Qualys WAS, RSA Archer, WSUS, Black Duck
  • very good communication and negotiation skills with ability to move from technical jargon to business language, depending on the target audience
  • excellent stakeholder management skills with ability to quickly switch between different assignments and manage conflicting priorities
  • good understanding of and extensive experience working with Atlassian tools (JIRA, Confluence)
  • basic understanding of Agile methodologies and their practical implementation in Cybersecurity or Software Engineering
  • you live and breathe both Product mindset and Engineering culture with focus on automation and orchestration in Security Products
  • decision-maker and conflict resolver in stressful situations
  • industry certifications like CISSP, CISM, Security+, OSCP, CCNA Security. ITIL etc. would be considered a plus


About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. You’ll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Discover more at