Principal Cyber Vulnerability Engineer The Cyber Vulnerability Operations Team consists of both the Application Security (AppSec) teams and the Vulnerability Management Operations (VM Ops) teams. Together, the Vulnerability Operations team collaborates with peers across Comerica to provide visibility into vulnerabilities within applications and infrastructure and ensures they are remediated, as well as facilitates and enforces the use of secure development practices across the bank. The Principal Cyber Vulnerability Operations Engineer role is responsible for vulnerability scanning, prioritizing vulnerabilities, and driving remediations while partnering with the application and infrastructure teams. The ideal candidate for this role will have hands-on expertise working in vulnerability management and operations and will have knowledge of tools and technologies such as Qualys, PowerBI, attack surface management, Cloud, and expertise in at least one programming language. This candidate will be experienced working with cross-functional teams in vulnerability management and prioritization and will have the ability to automate while using a programming language. The ideal candidate with have technical and non-technical risk and vulnerability assessment background in network, infrastructure, and application space, as well as experience with ServiceNow VR module added plus. CISSP/SANS/Cloud Certification desired. Position Responsibilities: Vulnerability Management Operations Perform vulnerability assessments and common baseline control scans across the Comerica environment and report on Key Risks Indicators (KRIs). Lead security vulnerabilities and risk management activities across Comerica, including identifying vulnerabilities and supporting application/system owners to manage risks/remediate vulnerabilities. Establish and mature processes around vulnerability management, remediation, and reporting. Lead key projects such as vulnerability prioritization to remediate critical key vulnerabilities. Participate in vendor evaluations and selection for vulnerability management products, such as external attack surface management. Implement and support those products on a continuous basis. Stay current on vulnerability management best practices across the industry. Administration & Reporting Develop a comprehensive set of metrics to track on enterprise risks and remediation trends and keep Management informed of them through accurate, timely, and appropriate reporting. Support monthly KRI reporting through data collection, working with application and infrastructure teams to remediate vulnerabilities. Create presentations based off KRI materials and keep Management informed of them. Technical Consulting & Communication Drive technical excellence and implementation of vulnerability management best practices in collaboration with technology teams across the enterprise. Provide consultation to and work closely with other functional infrastructure areas/departments on multiple initiatives to meet common organizational/business goals and objectives. Collaborate with business units, application and infrastructure teams, and vendors to identify, review and evaluate solution requirements. Automate existing manual processes in order to create improved processes and create faster delivery. Coach and mentor more junior team members and application teams on vulnerability remediation efforts. Risk Management Identify and communicate gaps in our vulnerability management practices. Participate in Red Team exercises to identify potential vulnerabilities proactively. Partner with application and infrastructure owners to provide consulting on vulnerability remediation to allow them to appropriately remediate large highly complex vulnerabilities within the SLA (service level agreement) and reduce risk for the bank. Develop cyber vulnerability analysis for known vulnerabilities, as well as cyber-related metrics and reporting deliverables. Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
At TUV SUD we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TUV SUD.
Established more than 150 years ago in Germany, TUV SUD is a leading global provider of technical services with more than 26.000 highly skilled employees across 1,000 offices worldwide. For over 30 years, throughout 33 locations, it is TUV SUD America\'s priority to create a safer future. To protect people, property and the environment from technology-related risks; we drive consumer protection, digital transformation, sustainable development, and urbanization.
Battery Test Engineer
Staff Engineer - Networks The Network Engineer is responsible for managing, designing, and improving Comerica’s enterprise network. He or she will assist network architects with design and implementation of network technologies. This role is responsible for providing guiding principles and leadership to engineering teams as well as offering proactive assistance on project-based activities. General duties include leading buildout of solutions and driving innovation for incorporating new modern technologies in the enterprise network. Partners with management and other engineers to drive infrastructure modernization projects to completion and provides Level3 technical support using extensive technical background to take on work assignments the team is engaged in. Strong people skills and the ability to balance/prioritize between multiple tasks and projects are essential. This position does involve both routing and switching as well as network firewall implementation projects for both on-prem and cloud infrastructure. The ideal candidate would have experience in network design, implementation, and documentation of medium-large scale enterprise networks, be familiar with datacenter technologies (Nexus switches, VPC, Nexus Dashboard, Cisco ACI), have experience with switching / routing / Wi-Fi and Firewall/VPN on Cisco platforms as well as RemoteAccessVPN/AnyConnect on Firepower/ASA clusters and tweaking their integration with NAC solutions (Cisco ISE). For maintaining and implementing a good security posture, skills with Checkpoint firewall technologies (Management Servers, CheckPoint Infinity, CheckPoint Maestro deployments) are also desirable. The principal engineer would also ideally work with F5 Load balancer clusters (Load balancing and SSL decryption policies) as well as Infoblox (DNS/IPAM functions). Cloud networking experience is also desirable (AWS, Azure, GCP) with existing familiarity with on-prem to cloud connectivity solutions (BGP peering, Cloud Exchange, etc.). SolarWinds use for compliance, configuration management and monitoring, LiveAction or LibreNMS monitoring is also desirable. CCNP Enterprise (R&S) knowledge level required, CCIE nice to have. The Staff Engineer is expected to work collaboratively across a variety of business units to implement new technologies, coordinate and take lead of assigned projects in all technical and communication aspects, Lead engineering peers towards achieving common goals in assigned projects, and coach peer engineers and effectively perform knowledge transfer/cross-training activities. The ability to take ownership of a project and execute it from 0 to 100% with little to no supervision, while interacting with multiple departments/teams that may hold certain keys to project completion is critical to achieving success in this role. Position Responsibilities: Design & Methodology Work closely with business units, application teams, infrastructure areas and vendors to identity, review and evaluate the solution requirements. Investigate and propose strategic fits for virtualization, consolidation and rationalization solution opportunities within the infrastructure or business. Propose changes to the technical design solutions as applicable. Evaluate and align strategic fit solutions across platforms and solutions specific to system hardware and software technologies. Understand, participate, review and influence long term capacity planning and technology investments. Technical Consulting Provide client consulting and planning guidance as applicable for moderate to complex projects. Provide consultation and works closely with other functional infrastructure areas/departments on multiple initiatives to meet common organizational/business goals and objectives. Participate in and provides consulting to project teams on architectural, design development, integration opportunities, planning of complex systems. Planning & Organizing Map requirements into standard services solution, identity opportunities for integrating to existing or reuse technology and provide cost effective solutions for moderate to large highly complex project/programs/initiatives. Review, identify and manage requirements for moderate to complex solutions and do a cost value, feasibility and risk analysis. Risk Management Review, participate, develop and update architectural standards, guiding principles, rationales and strategies. Evaluate, review and approve highly complex design solutions for business and Infrastructure project or programs or initiatives. Administration Keep management informed of status of on activities through accurate, timely, and appropriate reporting. Actively participate in committees representing the department and/or planning unit. Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled