Overview
The role focuses on evolving WFP’s vulnerability and exposure management capabilities towards a risk-driven approach. It involves identifying, contextualizing, and prioritizing vulnerabilities across WFP’s digital environments to reduce cyber risk exposure.
Key Responsibilities
- Drive continuous asset discovery and visibility across various environments.
- Conduct and validate vulnerability assessments using multiple tools and intelligence sources.
- Prioritize vulnerabilities based on real-world risk factors, including exploitability, exposure, business criticality, and attack path relevance.
- Act as the central coordination point for vulnerability remediation, ensuring clear tasking, tracking progress, enforcing SLAs, and escalating high-risk or delayed items.
- Drive the practical adoption of AI-enabled capabilities within vulnerability and exposure management processes.
- Recommend compensating controls where remediation is constrained.
- Support integration of vulnerability data into dashboards, reporting, and ticketing platforms.
- Manage and track vulnerability findings through tickets and alerts.
- Contribute to awareness initiatives and knowledge sharing related to vulnerability risks and secure practices.
Required Experience
At least 6-8 years of experience in vulnerability management, cybersecurity operations, threat management, or related areas. Experience working with cloud platforms, threat exposure management, or environments characterized by rapidly evolving vulnerabilities and exploit scenarios is highly desirable.
Qualifications
University Degree in Information Technology, Information Systems, Cybersecurity, or related domains or a combination of relevant experience and education. Certifications such as CISSP, CISM, CRISC, GIAC, or OSCP are advantageous.
