HiringCafe
Posted 21h ago

Vice President and Product Owner, Information Security – Continuous Controls Monitoring

@ Prudential Financial
View All Jobs
Newark, New Jersey, United States
$193k-$289k/yrOnsiteFull Time
Responsibilities:defining baselines, monitoring compliance, driving remediation
Requirements Summary:10+ years in cybersecurity/infrastructure security with 5+ years senior leadership; deep knowledge of secure baselines, automated control monitoring, NIST/CIS/SOC2/PCI/DORA frameworks, ServiceNow Configuration Compliance, vulnerability/CSPM tooling, and strong communication and agile/product skills.
Technical Tools Mentioned:ServiceNow Configuration Compliance, Guardium, Qualys, Wiz, BigFix, Chainguard, AWS, Azure, EDR, CSPM/CNAPP, CI/CD, IAM, OWASP Top 10, OWASP LLM Top 10, OWASP Agentic Top 10, NIST-800-53 Rev 5, CIS Benchmarks, SOC2, PCI/DSS, DORA, NIST AI RMF, Test-Driven Development (TDD)
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Job Classification:

Technology - Agile, Delivery, & Product

Are you interested in building security capabilities that enable the organization with innovation, speed, agility, scalability, and efficiency? As Vice President and Product Owner, Information Security – Continuous Controls Monitoring (CCM), you'll unlock an exciting and impactful career, advancing your profession at a leading financial services institution.

Your Team & Role
As Vice President and Product Owner, Information Security – Continuous Controls Monitoring, you will set the strategic direction for secure baselines for infrastructure and application security across all of Information Security, identifying cross-functional automation opportunities and developing scalable solutions to monitor risk and verify compliance. You will lead the enterprise capability to define, enforce, monitor and automatically validate the security posture of every compute surface the business runs on – physical and virtual servers, domain controllers, network platforms, SaaS platforms/applications, containers, Kubernetes workloads, endpoints, databases and host-based DMZ enforcement points.


You will own the standard, strategy, roadmap, backlog and outcomes of an internal product treated as an integrated platform – one that converts policy and framework requirements (NIST-800-53 Rev 5, CIS Benchmarks, SOC2, PCI/DSS, DORA, NIST AI RMF) into machine enforceable controls with automated, audit-grade evidence collection. This role is forward-looking and requires technical depth to partner with delivery and engineering organizations on alignment of plans. As the enterprise deploys Frontier models, Agentic AI and non-human identities into production infrastructure, you will extend the secure baseline and CCM program to cover model-serving hosts, GPU fleets, agent runtimes, vector stores and MCP/tooling-calling surfaces to monitor controls to AI agents the same way they are applied to human and services identities
Success in this role will require strategic and exceptional problem-solving abilities, clear and inclusive communication, strong business acumen, collaborative agility, and a commitment to continuous learning.

Here is What You Can Expect on a Typical Day
Own the golden image and hardened baseline strategy for every supported OS, infrastructure platform, container base images, database, DMZ host class aligned to CIS and industry benchmarks and tailored vendor baselines
Define drift detection, enforcement and auto-remediation standard requirements so the 1) delivery partners can harden IT services 2) deviations from baselines can be monitored 3) auto-remediation is executed, where safe.
Drive patch management strategy (OS, 3rd party software, firmware) with risk indicators operationalized to define effectiveness and areas of risk to drive continuous improvement.


Define and implement orchestration reporting capabilities into the centralized reporting system (ServiceNow Configuration Compliance), including the development of risk indicators and dashboards for measurement of risk.
Mature exception management processes to ensure proper documentation for compensating controls, risk acceptance and time-bound remediation/expiry.
Using scaled Agile, maintain the vision, roadmap, backlog, user stories, acceptance criteria and release plan. Partner with engineering teams to deliver iteratively.


Translate the Secure baseline security standard into defined control monitoring and enforcement plans. Drive coverage so each control has defined tests, an automated evidence collector, defined frequency, remediation ownership and an exception path.


Replace point-in-time, manual audits with automation (API and telemetry driven evidence) pulled directly from source systems (Guardium, CSPM/CNAPP, EDR, vulnerability and compliance scanners, IAM, code repos, CI/CD, etc.).


Promote a collaborative, learning-driven culture that adapts quickly to change and fosters innovation. Must excel at leading multi-disciplinary teams of security engineers, infrastructure/platform engineers, Cloud engineering, IAM, Audit/compliance and DevOps.


Must be able to communicate in a way to simplify complex issues across executive leadership, stakeholders and business partners.

Key Knowledge Required:
OWASP Top 10, OWASP LLM Top 10, OWASP Agentic Top 10
Regulatory frameworks (NIST-800-53 Rev 5, CIS Benchmarks, SOC2, PCI/DSS, DORA, NIST AI RMF, AWS/Azure)
ServiceNow Configuration Compliance
Vulnerability Scanners (Qualys) and CSPM/CNAPP Tools (Wiz)
Compliance Tools (Guardium)
Hardening Capabilities (BigFix, Chainguard)
10+ years in Cybersecurity, infrastructure security, including 5+ years in Senior leadership of a security, platform, controls or compliance engineering function
Certifications such as CISSP, CISM, CCSP, CISA, GIAC (GCCC, GCSA) or AWS/Azure security specialty
Ability to coach others with minimal guidance and effectively leverage diverse skillsets
Experience with agile development methodologies and Test-Driven Development (TDD)

What we offer you:


Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $192,900.00 to $289,300.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.
  • Market competitive base salaries, with a yearly bonus potential at every level. 
  • Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave. 
  • 401(k) plan with company match (up to 4%). 
  • Company-funded pension plan. 
  • Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs. 
  • Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.  
  • Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.  
  • Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period).

Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.  


Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom. 


Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status, medical condition or any other characteristic protected by law. 


If you need an accommodation to complete the application process, please email [email protected]

 

If you are experiencing a technical issue with your application or an assessment, please email [email protected] to request assistance.