Sr. Manager, Vulnerability & Threat Management

Requisition Number: 66180

Corning is vital to progress – in the industries we help shape and in the world we share.

We invent life-changing technologies using materials science. Our scientific and manufacturing expertise, boundless curiosity, and commitment to purposeful invention place us at the center of the way the world interacts, works, learns, and lives.

Our sustained investment in research, development, and invention means we’re always ready to solve the toughest challenges alongside our customers. 

The global Information Technology (IT) Function is leading efforts to align IT and Business Strategy, leverage IT investments, and optimize end to end business processes and associated information integration technologies.  Through these efforts, IT helps to improve the competitive position of Corning's businesses through IT enabled processes.  IT also delivers Information Technology applications, infrastructure, and project services in a cost efficient manner to Corning worldwide.

Role Purpose

Corning has an immediate opening for a motivated Threat & Vulnerability Management leader to join Corning's Global Cybersecurity Operations organization. Our goal is to stay ahead of and maintain a technical advantage over our adversaries by using the latest technical advancements by providing global capabilities that our Cyber Defenders rely on.  While the primary focus for this position is vulnerability identification and remediation, you will gain cross-functional experience as you interface directly with our cyber defenders to understand their mission and capabilities.  As a key part of this team, your responsibilities will include all aspects of the vulnerability management, including operation of the company’s vulnerability scanning solution prioritizing remediation efforts, communicating with leadership and system owners to drive remediation closure, and developing effective metrics. In this position, you will have opportunities to interact with both leadership and key stakeholders across the corporation and will be challenged with the opportunity for growth in a highly collaborative environment. 

This role has the ability to be virtual

Key Responsibilities

• Lead and coordinate the activities of the Threat & Vulnerability Management team, including but not limited to vulnerability identification, inventory, risk assessment and prioritization, continuous monitoring, remediation planning, and reporting.
• Optimize and enhance the vulnerability scanning capability.
• Improve and mature vulnerability reporting to key stakeholders and drive remediation efforts by communicating, clearly articulating, and prioritizing risk impact to all stakeholders to convey the urgency and need to remediate a vulnerability commensurate with the risk it presents.
• Deliver and enhance existing vulnerability and remediation metrics
• Develop the integration and automation strategy around multiple VM toolsets
• Perform risk-based technical assessments on technical vulnerabilities.
• Stay abreast of emerging threats and promote understanding of associated risk with stakeholders using a comprehensive communication strategy.
• Review and analyze vulnerability data to identify trends and patterns.
• Deliver vulnerability findings and drive remediation efforts.
• Advising employees responsible for remediation on the best reduction and remediation practices.
• Influence the development of vulnerability management standards and security policies.
• Oversee the vulnerability management processes, suggesting applicable change controls, and security exceptions.
• Design and implement new or enhanced vulnerability reporting and monitoring solutions.
• Assist and support incident response as needed

Skills Required

• Bachelor's degree in computer science or related field
• 5+ years of Vulnerability & Threat Management or related experience
• Able to evaluate trade-offs and come up with innovative ways to address vulnerabilities.
• Ability to think critically and find solutions to complex and often ambiguous security challenges.
• Strategic mindset with the ability to align vulnerability management with organizational goals by quantifying, prioritizing, and effectively communicating risks in the context of business objectives.
• Demonstrated ability to leverage emotional intelligence to creatively lead, manage, motivate, and develop high performing team.
• Use active listening and other interpersonal skills to effectively coach, mentor, and collaborate.
• Experience presenting to both technical and non-technical audiences.
• Capable of communicating risk to leadership.
• Independent resilience to initiate, follow-up, and ensure the completion of tasks with internal team and external stakeholders.
• Demonstrated written communication skills, with a focus on providing clarity of remediation efforts to both system owners and leadership.

Preferred Skills and Experiences

• Experience with cyber threats, cyber risk, and vulnerability management.
• Experience with intelligence driven defense approach.
• Experience in assessing Industrial Control Systems (ICS), Operation Technologies (OT), and manufacturing networks.
• Experience conducting or leading incident response efforts.
• Experience with threat models, such as Diamond, Cyber Kill Chain, ATT&CK, Racetrack, etc.
• Experience participating in penetration testing.
• Experience with exploit research

   

This position does not support immigration sponsorship.  

The range for this position is $176,785.00 - $243,080.00 assuming full time status. Starting pay for the successful applicant is dependent on a variety of job-related factors, including but not limited to geographic location, market demands, experience, training, and education. The benefits available for this position are dependent on hours worked and may include medical, dental, vision, 401(k) plan, pension plan, life insurance coverage, disability benefits, and PTO.

​Corning Puts YOU First! 

We are committed to supporting your health, financial, career development, and life goals as you grow professionally and personally to achieve your highest potential. All benefits begin as soon as you start your career at Corning. 
 

• Our monetary peer-to-peer recognition program is tied to our Values and celebrates you and your colleagues’ contributions. 
• Health and well-being benefits include medical, dental, vision, paid parental leave, mental health/substance use, fitness, and disease management programs.  
• Financial benefits include a 401(k) savings plan with company matching contributions and a 100% company-paid pension benefit that grows steadily throughout your career. 
• Companywide bonus and attractive short- and long-term compensation programs are available based on your role and responsibilities.   
• Professional development programs help you grow and achieve your career goals.

We prohibit discrimination on the basis of race, color, gender, age, religion, national origin, sexual orientation, gender identity or expression, disability, veteran status or any other legally protected status.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. To request an accommodation, please contact us at accommodations@corning.com.