Technical Program Manager-vulnerability Management - Mississauga, Canada - PointClickCare

PointClickCare

Verified Company

Mississauga, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

For more than 20 years, PointClickCare has been the backbone of senior care.

We've amassed the richest senior care dataset making our market density untouchable and our connections to the healthcare ecosystem exponentially more powerful than those of any other platform.

With Collective Medical & Audacious Inquiry, we've become the most expansive, full-continuum care collaboration network, offering care teams immediate, point-of-care access to deep, real-time insights at every stage of a patient's journey.

For more information on PointClickCare, please connect with us on Glassdoor and LinkedIn.

Responsibilities:

Design, implement and oversee a new enterprise vulnerability program, focusing on implementing initiatives, projects, processes, and technology integrations, designed to build and continually improve a new vulnerability management program.
Serve as an advisor and consultant role to technical teams on prioritizing vulnerabilities and developing plans to mitigate, remediate and resolve them in a timely manner while to attaining the desired risk profile and maintaining compliance.
Design and implement vulnerability reporting and monitoring solutions, including collaboration with various teams and tools in the preparation of reports for product, engineering, operations, and technology teams and Clevel leadership on risk and performance concerns as they relate to mitigating and eliminating vulnerabilities.
Identify gaps and pitfalls in managing vulnerabilities, and develop plans to test, evaluate and implement new processes to address those gaps and pitfalls.
Support and collaborate with stakeholders and the security team in to review and analyze vulnerability data, trends, and patterns in preparation of relevant and actionable cyber threat briefings and reports for all levels of leadership to aid in decision making and proactive mitigation efforts.
Assess, document, and as needed, influence positive change in the vulnerability management practices, standards and security policies across business to ensure compliance against company policy and standards are met.

Essential Qualifications:

Bachelor's Degree in Information Technology or the equivalent combination of education, training, or experience
Strong experience in the SDLC process, methodologies, and technologies
Complex problemsolving skills with the ability to work with mínimal supervision.
Knowledge of current and emerging threats and techniques for exploiting security vulnerabilities, malware, attack paths and threat actor groups.
Proactive approach, a cando attitude and work well across departments and within a team
Experience in using vulnerability scanning solutions is highly desirable.
Strong communication skills with executivelevel leadership
Strong understanding of risk management frameworks
Strong experience in coordinating with various teams and directing the work of individual contributors (engineers, other) in other departments to manage and prioritize vulnerability remediation.
Experience and understanding of cloud security architectural principles and stack including, IaaS, PaaS, containers, EC2, etc.
4+ years of experience in technical program management in any cybersecurity or ITrelated field
Strong foundation in project management concepts in meeting deadlines, tracking milestones, and coordinating with external entities.

Nice to Have:

Strong familiarity with Atlassian Jira and Confluence
Demonstrated experience in delivering reports and metrics at various levels of an organization, from tactical to operational to strategic
Good understanding of attack surface management principles
Strong knowledge of governing regulations such as HIPAA, GDPR, ISO 27001, and SOC 2 compliance standards
Experience in SaaS and/or health care environments

LI-HYBRID/REMOTE
- #LI-TP1