State of South Carolina
Vulnerability Remediation Manager - 61089236
State of South Carolina, Columbia, South Carolina, us, 29228
Vulnerability Remediation Manager
The Department of Administration's Office of Technology and Information Services is the state’s central provider of IT services to state government agencies. We are seeking a talented Vulnerability Remediation Manager to join our team. In this role you will drive success for our Vulnerability Remediation / Service Monitoring team. You will lead a team of technical professionals responsible for the identification, validation, tracking and remediation of security vulnerabilities as well as service monitoring across the organization’s technology environment. This position will ensure alignment with industry‑standard security frameworks, oversee enterprise wide patch validation, and ensure comprehensive SIEM and log management integration. This position plays a critical role for improving the organization’s security posture and ensuring compliance with Division of Technology Operations (DTO) and Division of Information Security (DIS) standards and external regulatory requirements.
This position is onsite in beautiful Columbia, South Carolina
Responsibilities
Lead and support staff through coaching, training, and performance development. Streamline workflows while implementing management policies and organizational initiatives. Foster a positive, team focused environment.
Provide strategic direction and technical guidance to vulnerability team. Define vision and roadmap for vulnerability management alignment with DTO and DIS goals. Collaborate with DTO and DIS teams to drive coordinated remediation efforts.
Collaborate with DIS team to ensure scanning across infrastructure, endpoints, applications and cloud environments are in place and risks are ranked and remediation tracked. Validate patch deployments across systems to confirm compliance with security requirements. Provide oversight of patch management programs, ensuring consistency, documentation, and adherence to standards.
Ensure Enterprise Service monitoring and accurate reporting for any service disruption. Lead team to identify areas that are vulnerable to lack of service availability and work to ensure remediation.
Lead team to ensure that log collection and retention requirements are in place. Work with DIS and DTO teams to ensure SIEM integrations are functional. Provide monthly reports and dashboards to leadership detailing patch compliance and remediation progress.
Qualifications
A bachelor's degree in information technology, computer science, engineering, or a related field (or equivalent experience on a year‑for‑year basis).
Minimum of two (2) years of experience in security architecture practices and four (4) years managing technical staff.
Additional Requirements
Strong organizational skills with the ability to communicate effectively with executive level and front line staff.
Position requires strong collaborative skills working with representatives from a variety of internal and external sources.
Ability to analyze security issues and provide clear recommendations for mitigation.
Familiarity with security tools and platforms such as SIEMs, IDS/IPS, endpoint protection, and vulnerability management systems.
Applicants indicating college credit or degree(s) on the application will be required to bring a copy of college transcript to the interview. A copy of the transcript may also be uploaded as an attachment to the application, if required by the hiring department or if desired by the applicant. Please note that some areas of the Department may require an official, certified copy of the transcript prior to hiring or within a specific timeframe required by that area. Failure to produce an official, certified transcript may result in not being hired or termination.
The Department of Administration is committed to providing equal employment opportunities to all applicants and does not discriminate on the basis of race, color, religion, sex (including pregnancy, childbirth, or related medical conditions including, but not limited to lactation), national origin, age (40 or older), disability or genetic information.
Supplemental questions are considered part of your official application. Any misrepresentation will result in your disqualification from employment. Please complete the state application to include all current and previous work history and education. A resume will not be accepted nor reviewed to determine if an applicant has met the qualifications for the position.
Benefits Package for full time (FTE) employees
Health, dental, vision, long‑term disability, and life insurance for employees, spouse, and children. Click here for additional information.
15 days annual (vacation) leave per year
15 days sick leave per year
13 paid holidays
Paid Parental Leave
S.C. Deferred Compensation Program available (S.C. Deferred Compensation)
Retirement benefit choices
State Retirement Plan (SCRS)
State Optional Retirement Program (State ORP)
*Enrollment in one of the listed plans is required for all FTE employees; please refer to the contribution section of hyperlinked retirement sites for the current contribution rate of gross pay.
#J-18808-Ljbffr
This position is onsite in beautiful Columbia, South Carolina
Responsibilities
Lead and support staff through coaching, training, and performance development. Streamline workflows while implementing management policies and organizational initiatives. Foster a positive, team focused environment.
Provide strategic direction and technical guidance to vulnerability team. Define vision and roadmap for vulnerability management alignment with DTO and DIS goals. Collaborate with DTO and DIS teams to drive coordinated remediation efforts.
Collaborate with DIS team to ensure scanning across infrastructure, endpoints, applications and cloud environments are in place and risks are ranked and remediation tracked. Validate patch deployments across systems to confirm compliance with security requirements. Provide oversight of patch management programs, ensuring consistency, documentation, and adherence to standards.
Ensure Enterprise Service monitoring and accurate reporting for any service disruption. Lead team to identify areas that are vulnerable to lack of service availability and work to ensure remediation.
Lead team to ensure that log collection and retention requirements are in place. Work with DIS and DTO teams to ensure SIEM integrations are functional. Provide monthly reports and dashboards to leadership detailing patch compliance and remediation progress.
Qualifications
A bachelor's degree in information technology, computer science, engineering, or a related field (or equivalent experience on a year‑for‑year basis).
Minimum of two (2) years of experience in security architecture practices and four (4) years managing technical staff.
Additional Requirements
Strong organizational skills with the ability to communicate effectively with executive level and front line staff.
Position requires strong collaborative skills working with representatives from a variety of internal and external sources.
Ability to analyze security issues and provide clear recommendations for mitigation.
Familiarity with security tools and platforms such as SIEMs, IDS/IPS, endpoint protection, and vulnerability management systems.
Applicants indicating college credit or degree(s) on the application will be required to bring a copy of college transcript to the interview. A copy of the transcript may also be uploaded as an attachment to the application, if required by the hiring department or if desired by the applicant. Please note that some areas of the Department may require an official, certified copy of the transcript prior to hiring or within a specific timeframe required by that area. Failure to produce an official, certified transcript may result in not being hired or termination.
The Department of Administration is committed to providing equal employment opportunities to all applicants and does not discriminate on the basis of race, color, religion, sex (including pregnancy, childbirth, or related medical conditions including, but not limited to lactation), national origin, age (40 or older), disability or genetic information.
Supplemental questions are considered part of your official application. Any misrepresentation will result in your disqualification from employment. Please complete the state application to include all current and previous work history and education. A resume will not be accepted nor reviewed to determine if an applicant has met the qualifications for the position.
Benefits Package for full time (FTE) employees
Health, dental, vision, long‑term disability, and life insurance for employees, spouse, and children. Click here for additional information.
15 days annual (vacation) leave per year
15 days sick leave per year
13 paid holidays
Paid Parental Leave
S.C. Deferred Compensation Program available (S.C. Deferred Compensation)
Retirement benefit choices
State Retirement Plan (SCRS)
State Optional Retirement Program (State ORP)
*Enrollment in one of the listed plans is required for all FTE employees; please refer to the contribution section of hyperlinked retirement sites for the current contribution rate of gross pay.
#J-18808-Ljbffr