Hybrid Lead Security - IAM bei Blue Yonder

Key Responsibilities:

• Design, implement, and mature the CTEM program aligned with MITRE ATT&CK, NIST, and organizational risk priorities.
• Lead threat exposure discovery by orchestrating tools and data across vulnerability scanning, attack surface management (ASM), and threat intelligence platforms.
• Conduct continuous threat assessments using simulated attacks (BAS, purple teaming) to identify exploitable gaps.
• Prioritize exposures based on threat likelihood, asset criticality, and business risk using a risk-based approach.
• Collaborate with vulnerability management, red/blue teams, and infrastructure owners to validate findings and track remediation.
• Provide executive-ready reporting and dashboards on exposure trends, risk posture, and CTEM KPIs.
• Coordinate across security architecture, incident response, DevSecOps, and cloud security to reduce mean-time-to-exposure (MTTE) and mean-time-to-remediation (MTTR).
• Lead vendor and technology evaluations for CTEM-enabling platforms such as ASM, BAS, and EASM.
• Stay current with emerging threats, attacker TTPs, and relevant security innovations.

Qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, or related field; advanced degree preferred.
• 7+ years of experience in cybersecurity with 3+ years in threat detection, vulnerability management, or red/purple teaming.
• Deep understanding of CTEM frameworks, attack surface management (ASM), and continuous threat validation.
• Proficiency in tools such as Tenable, Qualys, AttackIQ, Randori, or similar.
• Familiarity with MITRE ATT&CK, NIST CSF, CVSS, and cyber threat intelligence workflows.
• Strong leadership, cross-functional collaboration, and communication skills.
• Experience creating exposure reports for executives and communicating risk impact in business terms.

Preferred Certifications:

• GIAC GPEN/GWAPT, OSCP, CISSP, or equivalent
• MITRE ATT&CK Cyber Threat Intelligence or similar exposure-based certifications

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.