Vulnerability Management Engineer

Build a career powered by innovations that matter! At Novanta, our innovations power technology products that are transforming healthcare and advanced manufacturing—improving productivity, enhancing people’s lives and redefining what’s possible. We create for our global customers engineered components and sub-systems that deliver extreme precision and performance for a range of mission-critical applications—from minimally invasive surgery to robotics to 3D metal printing.

Novanta is one global team with over 26 offices located in The Americas, Europe and Asia-Pacific. Looking for a great place to work? You have found it with a culture that embraces teamwork, collaboration and empowerment. Come explore Novanta.

Job Description

Build a career powered by innovations that matter! At Novanta, our innovations power technology products that are transforming healthcare and advanced manufacturing improving productivity, enhancing people’s lives and redefining what’s possible. We serve as a trusted technology partner to medical and advanced industrial original equipment manufacturers (OEMs) worldwide, engineering components and sub-systems that deliver extreme precision and performance for a range of mission-critical applications from minimally invasive surgery to robotics to 3D metal printing.

Novanta is a global organization with offices located throughout EMEA, The Americas and Asia Pacific. Novanta is a publicly traded company on NASDAQ under symbol NOVT.

Business Overview

Novanta’s Corporate and Shared Services teams play an important role in executing the company’s strategic mission and operations. Included in Corporate and Shared Services are the business functions including Finance, Accounting, Human Resources, Information Technology, Legal, Compliance, Corporate Development and Corporate Marketing. The Corporate and Shared Services teams work closely with all Novanta business units to support operating initiatives contributing to the organization’s financial success.

Position Details

Summary

The Vulnerability Management Engineer plays a critical role in safeguarding our organization's assets by overseeing the development and implementation of a comprehensive Vulnerability Management program. The Vulnerability Management Engineer will work within the Security Engineering team to enhance and ensure the continuous vulnerability lifecycle management within Novant’s diverse environments. This program aims to identify, assess, and rectify vulnerabilities in both production and enterprise assets, ensuring the organization's security posture remains robust. This role will support the collection, monitoring, reporting, and impact assessment for vulnerability related data. Your goal is to maintain the confidentiality, integrity, and availability of our data, while ensuring compliance with industry standards and regulations.

Primary Responsibilities

• Providing security expertise and communicating complex security issues to the executive leadership team.

• Build and maintain a comprehensive vulnerability management program aligned with industry standards and best practices.

• Perform hands-on vulnerability scanning and management, patching systems, designing mitigation strategies, and authoring vulnerability-related products, such as, program doctrine and analysis reports.

• Collaborate cross-functionally with teams including IT, Security, Engineering/Production, and Leadership, ensuring vulnerabilities are addressed efficiently.

• Prioritize vulnerabilities based on severity, risk level, and potential impact on the organization's operations and reputation.

• Facilitate remediation plans for identified vulnerabilities, collaborating with asset owners to ensure timely resolution.

• Monitor and track the progress of vulnerability remediation efforts, providing regular reports to management on the overall effectiveness of the program.

• Build dashboards, metrics, and reports that convey the health and stability of the VM program.

• Stay current with the latest trends and advancements in cyber defense tools, and relevant cyber threats.

• Drive to learn new things about vulnerability management, exploits, hacker techniques, and overall security operations.

Required Experience, Education, Skills, Training and Competencies

• Possess knowledge of security frameworks such as NIST, ISO, and CIS.

• Prior experience designing and implementing systems and measures to protect an organization’s data and network infrastructure from cyber threats and vulnerabilities.

• Excel at prioritizing work and other demands for self and team including making risk-based decisions about remediation recommendations.

• Identifying and developing mitigation strategies. This includes designing mitigations that specifically address vulnerabilities, working with system owners to patch systems, and identifying adequate solutions to remediate vulnerabilities where patching is not possible

• Proficient in security technologies and products, with a solid understanding of network infrastructure and the ability to effectively implement moderate to complex security measures and solutions.

• At least five years’ experience in vulnerability management or related field such as penetration testing, SOC, or threat intelligence.

• Understanding of information privacy and data protection, along with how these affect and impact security across a global company.

Travel Requirements

• Occasional – as needed

Physical Requirements

• Mobility to work in a standard office setting and to use standard office equipment, including a computer.

• Ability to use vison to read computer screen and read printed materials

#LI-IC1

Novanta is proud to be an equal employment opportunity and affirmative action workplace. We consider all qualified applicants without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity or expression, national origin, military and veteran status, disability, genetics, or any other category protected by federal law or Novanta policy.

Please call +1 781-266-5700 if you need a disability accommodation for any part of the employment process.