Senior Vice President, Resiliency Lead
BNY · New York, NY · 2 wk ago
ManagementFull-time
Vulnerability Detection & Triage
- Continuously monitor the VMAD vulnerability intelligence system to identify newly disclosed CVEs and policy violations affecting managed applications and infrastructure
- Design and implement CI/CD-integrated remediation pipelines that automate the steps from scoping the change, running tests, certifying for release, managing change controls, and deploying components through stages of nonprod/prepprod/prod with sufficient controls and approvals
- Build pipelines that handle three distinct remediation surfaces independently for application dependencies, host patching, cluster upgrades
Platform Improvement & Speed of Migration
- Identify systemic bottlenecks — manual approval gates, flaky tests, environment provisioning lag — and eliminate them through automation, tooling, or process re-design
Cross-Application Collaboration
- Serve as the embedded vulnerability remediation partner for application teams across AIM, providing both automation tooling and advisory support for complex or high-risk remediation scenarios
Required:
- 5+ years in platform, DevSecOps, or infrastructure engineering with demonstrated ownership of security remediation programs at scale
- Hands-on experience building and operating CI/CD pipelines (GitLab CI, Jenkins, GitHub Actions, or equivalent) for automated testing and deployment
- Working proficiency in at least two of: Java/JVM ecosystem, Go, Python — specifically around dependency management, build tooling, and vulnerability scanning
- Experience with Kubernetes operations including cluster lifecycle management, node pool upgrades, and workload disruption budgeting
- Familiarity with OS-level patch management tooling and host configuration management (Ansible, Chef, or equivalent)
- Strong understanding of the vulnerability lifecycle: CVE scoring (CVSS/EPSS), exploit maturity, and risk-based prioritization
PREFERRED:
- Experience integrating with VMAD or similar enterprise vulnerability intelligence platforms via API
- Kubernetes cluster administration on Azure AKS or equivalent managed Kubernetes services
- Familiarity with enterprise secret management and credential rotation in the context of BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.