VP - Threat Intelligence and Vulnerability Management

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Security, or related field; Master’s preferred.
• 10+ years of progressive experience in cybersecurity, with at least 5 years in a leadership role.
• Proven experience managing enterprise vulnerability and application security programs.
• Familiarity with threat intelligence platforms and frameworks (MITRE ATT&CK, STIX/TAXII, etc.).
• Expertise in tools such as Tenable, Qualys, Nessus, Burp Suite, GitHub Advanced Security, and cloud-native security tools.
• Strong understanding of OWASP Top 10, SAMM, threat modeling (STRIDE, DREAD), and secure coding practices.
• Experience with AWS, Azure, and serverless security architectures.
• Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface.
• Knowledge of one or more compliance standards, including Payment Card Industry (PCI), Gramm-Leach-Bliley Act (GLBA), National Institute of Standards (NIST) or International Standards Organization (ISO).
• Exceptional communication and stakeholder management skills.
• Ability to influence cross-functional teams and drive change in a fast-paced environment.
• Strategic thinker with a hands-on approach to problem-solving.
• Regular, predictable attendance is required.

Nice To Haves

• Master’s preferred.

Responsibilities

• Strategic Leadership Develop and execute a unified strategy for threat intelligence, vulnerability management, and application security aligned with Triumph.io’s business objectives.
• Define and maintain a multi-year roadmap to enhance security posture across cloud, on-premise, and hybrid environments.
• Serve as a trusted advisor to executive leadership on emerging threats, vulnerabilities, and risk mitigation strategies.
• Threat Intelligence Lead the threat intelligence program to proactively identify and assess cyber threats relevant to Triumph.io’s business and technology landscape.
• Collaborate with internal and external partners to gather, analyze, and disseminate actionable threat intelligence.
• Integrate threat intelligence into detection, response, and prevention workflows.
• Vulnerability Management Oversee enterprise-wide vulnerability discovery, assessment, prioritization, and remediation efforts.
• Ensure continuous monitoring of assets across cloud, endpoint, network, and third-party environments.
• Communicate risk-based vulnerability insights to both technical and non-technical stakeholders.
• Application Security Lead the application security program, ensuring secure development practices across the SDLC.
• Implement and manage tools for SAST, DAST, SCA, and container security.
• Partner with engineering teams to embed security into DevOps pipelines and CI/CD workflows.
• Collaboration & Governance Partner with infrastructure, DevOps, risk, and compliance teams to align security initiatives with business goals.
• Define and track KPIs and metrics to measure program effectiveness and drive continuous improvement.
• Represent Triumph.io in security forums, audits, and regulatory engagements.

Benefits

• Medical
• Dental
• Vision
• Paid Time Off
• 401k