Senior Cybersecurity Professional, Vulnerability Management

Job Description
Are You Ready to Make It Happen at Mondelēz International?
Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.
We are looking for a Senior Cybersecurity Professional to join our team as a proficient contributor to an Enterprise Vulnerability Management Program. The successful candidate will showcase deep understanding of the technical aspects of Vulnerability Management as well as ability and experience in developing reporting metrics and KPIs, directly managing relationships with vendors and business teams, and leading compliance monitoring activities to ensure that vulnerability related risks to Mondelēz Information and Operational Technology assets are properly mitigated.
How you will contribute:

• Oversee Vulnerability Management activities across Mondelēz.
• Own processes to track all vulnerability remediation efforts and hold various teams across the organization and vendors accountable for timelines. Escalating issues and problems when and where needed.
• Own processes to continuously monitor various sources of information (i.e., threat intelligence feeds) for vulnerabilities and assess their impact to Mondelēz's environment.
• Own processes that assess criticality of findings, create remediation plans with applicable teams and produce comprehensive reports for various levels of stakeholders (i.e., executive and technical).
• Support Information Security and Business groups by performing asset inventory, secure configurations and continuous monitoring, tracking and reporting and vulnerability service catalog.
• Support Vulnerability Management activities related specifically to IT and OT systems including Cloud and non-cloud assets and technologies.
• Write and review policy documentation based on industry standards.
• Support regular updates to secure coding standards documentation and the ongoing assessment of the customer organization against the NIST Cyber Security Framework.
• Develop and maintain reporting and KPIs on vulnerabilities across the enterprise.
• Develop and maintain Vulnerability Management Dashboards to be used by business, system, application and data owners across the enterprise.
• Assist with vulnerability assessments of new applications and act as an advisory resource to their developers to help ensure the creation of secure code.

Requirements:
A desire to drive your future and accelerate your career. You will bring experience and knowledge in:

• Minimum 4 years in Information/Cyber Security field, with at least 2 years working in Vulnerability Management.
• Experience with vulnerability scanning tools (e.g., Tenable, Wiz.io, etc) including set-up, configuration, architecture, reporting, scanning best practices.
• Knowledge of security concepts and methodologies such as vulnerability assessments, application vulnerability testing, enterprise security strategies, network and cloud security.
• Knowledge of security frameworks such as CIS and NIST.
• Excellent written and verbal communications skills, including presentational skills and able to clearly communicate issues to management and other key stakeholders.
• Knowledge of creating reporting dashboards on Vulnerability Management reporting tools.

No Relocation support available
Business Unit Summary
At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about.
We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum.
Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast.
Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Job Type
Regular
Information Security
Technology & Digital