Information Technology at Procter & Gamble is where business, innovation and technology integrate to build a competitive advantage for P&G. Our mission is clear -- we deliver IT to help P&G win with the over 5 billion consumers we serve worldwide. Our IT professionals are diverse business leaders who apply IT expertise to deliver innovative, tech-focused business models and capabilities for our 65 iconic, trusted brands.
From Day 1, you’ll be trusted to dive right in, take the lead, use your initiative, and build billion-dollar brands that help make everyday activities easier and make the world a better place! Our company offers purposeful workthat will take your career places you never envisioned, in creative workspaces where innovation thrives and where your technical expertise is recognized and rewarded.
The Opportunity
The Senior SecurityAnalyst in Active Threat and Vulnerability Defense will play a key role in strengthening our organization’s cybersecurity posture by integrating real-time threat intelligence and adaptive risk prioritization across enterprise assets. You will be responsible foridentifying, assessing, and communicating vulnerabilities across P&G systems, enhancing our security toolkit through automation and technology integration, and collaborating with threat-informed defense teams, patching teams, application owners, development teams, and security leaders throughout the organization.
Key Responsibilities
Proactive Vulnerability Assessment: Conduct thorough assessments of vulnerabilities across endpoints, servers, networks, and cloud assets. Use advanced tools and techniques to identify weaknesses before they can be exploited.
Automation and Orchestration: Lead initiatives to develop and enhance automated vulnerability detection, reporting, and remediation workflows. Collaborate with cross-functional teams to streamline processes that reduce the attack surface effectively.
Collaborative Remediation Management: Engage with security, infrastructure, and development teams to validate findings, provide risk context, and support coordinated remediation efforts. Track and report on remediation progress, ensuring timely and effective mitigation of identified vulnerabilities.
Stakeholder Communication and Reporting: Develop and present clear, actionable reports on vulnerability posture and risk management efforts to both technical and non-technical stakeholders, including executive leadership.
Tool and Process Optimization: Continuously assess and improve internal tools and processes for tracking threats, exposures, and mitigation activities. Keep abreast of industry best practices and emerging technologies to enhance operational efficiency.
Ongoing Professional Development: Maintain current knowledge of global threat trends, security advisories, and zero-day vulnerabilities. Actively engage in learning opportunities related to vulnerability management frameworks, solutions and emerging security practices.