Manager, Vulnerability Management

About Marvell

Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. 

At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. 

Your Team, Your Impact

At Marvell, we are looking for a manager for Vulnerability Management, you will be responsible for developing and implementing strategies to enhance and mature the enterprise vulnerability management program. The role ensures the identification, assessment, and remediation of security vulnerabilities across the enterprise.

What You Can Expect

• Vulnerability Management Program Development – design and implement a comprehensive vulnerability management program.

• Oversee vulnerability scanning tools to identify security vulnerabilities in enterprise systems, networks, and applications.

• Own and develop policies, procedures, and best practices for vulnerability scanning, assessment, and remediation.

• Perform risk-based prioritization of identified vulnerabilities. Collaborate with security analysts to conduct detailed assessments of critical vulnerabilities and develop POAM

• Work with cross-functional teams to develop remediation plans and timelines. Ensure timely patching or mitigation of vulnerabilities.

• Partner with IT and business teams to establish patching cadence, work with the change manager, and bring an automated patching process

• Develop and implement prioritized vulnerability remediation plans and work collaboratively with business. Track and report on remediation progress to stakeholders and leadership.

• Provide support for incident response and new systems onboarding processes in the application/system/infrastructure vulnerability security domain.

• Stay updated on emerging threats and vulnerabilities (emerging threats, zero days, latest attacks related to exploitation of vuln) through threat intelligence sources. Integrate threat intelligence into the vulnerability management process to address high-risk areas proactively.

• Build executive and business information security officer dashboards for the organization

• Define metrics and reporting to track program effectiveness and improvement. Develop and track key performance indicators (KPIs) for the vulnerability management program.

• Lead and manage vulnerability management projects, such as implementing new tools or processes.

• Lead a team of security engineers, providing mentorship and performance management in improving and automating processes wherever possible.

• Ensure compliance with security frameworks (e.g., ISO 27001, NIST CSF, TISAX, NIST 800-171, and SOX). Prepare for and support internal and external audits related to vulnerability management.

What We're Looking For

• 10+ years of experience in Cybersecurity, vulnerability management, and security operations

• Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or a related field

• Demonstrated background in deploying, owning, and configuring enterprise-level security tools/technology

• Experience scaling an enterprise vulnerability program across multiple environments, driving owner accountability and prioritization

• Hands-on experience and knowledge of vulnerability management tools such as Qualys, Rapid7, Tenable, and orchestration via SOAR or other platforms to automate vulnerability management program.

• In-depth knowledge across core domains – Vulnerability Management, External Attack Surface Management, Container Scanning, and Security Configuration Management

• Well-versed in penetration testing, vulnerability scanning, and red teaming methodologies and frameworks such as OWASP Top 10 and CWE 25.

• Demonstrated knowledge of networking and systems, and current vulnerability and threat trends.

• Strong understanding of network protocols, operating systems, and security technologies.

• Experience improving vulnerability prioritization models

• Excellent communication, collaboration, and interpersonal skills

• Cyber certifications (e.g., CISM, CISSP) or equivalent

Additional Compensation and Benefit Elements

With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

#LI-RS1