3M Enterprise Vulnerability Management Manager 

United States, Minnesota 

550587352

The Impact You Will Make in this Role

Here, you will make an impact by:

• Developing and implementing a comprehensive enterprise vulnerability management program across IT environments.
• Ensuring accurate and up-to-date asset inventory for vulnerability tracking.
• Conducting regular vulnerability scanning and assessment to identify and evaluate security risks.
• Establishing and enforcing a risk-based approach to vulnerability prioritization and remediation.
• Providing detailed reporting and security metrics to leadership for informed decision-making.
• Collaborating with Infrastructure, application, security, and business teams to enhance overall cyber resilience.
• Monitoring and analyzing vulnerability trends to identify emerging threats and adjust the program accordingly.
• Implementing automated tools and processes to enhance the efficiency and effectiveness of vulnerability management activities.
• Supporting response efforts related to vulnerabilities and providing guidance on mitigation strategies.
• Maintaining up-to-date knowledge of the latest security threats, vulnerabilities, and mitigation techniques.
• Driving continuous improvement initiatives to enhance the overall security posture of the organization.

Your Skills and Expertise:

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree or higher (completed and verified prior to start).
• Seven (7) years of experience in Cybersecurity in a private, public, government, or military environment.
• Three (3) years in a vulnerability management leadership role.
• CISSP certification or one of the following certifications: CISM, OSCP or GIAC.
• Experience in operating and managing a vulnerability management program in a large enterprise environment with a global footprint.
• Ability to engage stakeholders at different levels to drive vulnerability reduction across the environment.

Additional qualifications that could help you succeed even further in this role include:

• AWS/Azure security certifications.
• Excellent communication, negotiation, andrelationship-buildingskills.
• Strong analytical and problem-solving skills.
• Strong ability to influence and collaborate across cross-functional teams.
• Strong knowledge of cybersecurity frameworks and standards (e.g., CMMC, NIST CSF, ISO 27001, COBIT, or NIS2).
• Experience with automated vulnerability management tools and processes.
• Familiarity with regulatory compliance requirements and audit processes.
• Ability to stay current with the latest cybersecurity trends and threats.

Work Your Way Eligible (hybrid) – Minneapolis & Austin

• Work Your Way Eligible (Employee choice to work remote, on site, or hybrid)
• The Maplewood or Austin location 3 days per week.

Travel: In-OfficeTuesday/Wednesday/Thursday

Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.