Senior Program Manager of Vulnerability and Lifecycle Management

Senior Program Manager of Vulnerability and Lifecycle Management- Hybrid | Cary, NC

We’re a leader in data and AI. Through our software and services, we inspire customers around the world to transform data into intelligence – and questions into answers. 

If you’re looking for a dynamic, fulfilling career with flexibility and a world-class employee experience, you’ll find it here. We’re recognized around the world for our inclusive, meaningful culture and innovative technologies by organizations like Fast Company, Forbes, Newsweek and more.

About the job

The Managed Cloud Services Team is looking for a Senior Program Manager – Managed Cloud Vulnerability and Lifecycle Management to oversee and enhance processes for vulnerability, security, and lifecycle management across SAS Managed Cloud Services. Our team is at the forefront of delivering secure and compliant cloud-based solutions, ensuring operational excellence while addressing critical security challenges. Join us as we drive innovation and safeguard customer trust globally.

As a Senior Program Manager of Vulnerability and Lifecycle Management you will:

Be accountable for overall vulnerability and lifecycle management processes within the SAS Managed Cloud Services business unit.

• Prioritize and address security and compliance configuration issues with Global Operations and Customer Success teams.
• Report, track, and develop action plans for vulnerabilities and lifecycle management at a global, fleet level with measurable milestones.
• Partner with cross-functional teams, including Global Information Security, Governance, Risk, Compliance, and Audit, to address risks impacting SAS Managed Cloud Services.
• Contribute to risk and impact assessments for discovered vulnerabilities.
• Develop processes to enable self-sufficient lifecycle and compliance management for SAS Managed Cloud Services.
• Serve as an escalation point for security, compliance, and end-of-life concerns within the business unit.
• Collaborate with Product Owners and Architecture teams to prioritize security and compliance requirements.
• Assist Customer Success Teams with customer-facing product lifecycle plans, focusing on software patching and vulnerability management.

Required qualifications

• US Citizen Required.
• Bachelor’s degree in Computer Science, Business Administration, or a related field.
• Extensive experience in cloud infrastructure, software as a service (SaaS), security, compliance, or lifecycle management.
• 8+ years demonstrated experience in vulnerability management, security patching, and configuration processes.
• Strong ability to interface with executive management and present complex business and technical plans.
• Solid understanding of cybersecurity principles, regulatory standards (NIST 800-53, ISO 27001, FedRAMP), and cloud technologies.
• Equivalent combination of related education, training and experience may be considered in place of the above qualifications.
• You’re curious, passionate, authentic and accountable. These are our values and influence everything we do.

Preferred qualifications

• Master of Business Administration or certifications in product management.
• Security or compliance-related certifications (e.g., CISSP, CISA, Security+).
• Project management experience.
• Experience with cloud-based application development and infrastructure.

World-class benefits   

Highlights include... 

• Comprehensive medical, prescription, dental and vision plans. 
• Medical plan options include:
  • PPO with low annual deductible and copays. 
  • HDHP combined with a health savings account with a contribution from SAS (no access to on-site health care center). 
• Onsite Health Care Center (HQ) that’s free to employees and family members enrolled in the PPO plan. There’s a pharmacy too! Not local to HQ? The pharmacy will ship prescriptions for no additional charge! 
• An industry-leading 401k plan. 
• Tuition Assistance Program and programs and resources to support your development
• Generous time away including vacation time, a variety of paid holidays, and our much-loved U.S. Winter Wellness Break between December 25 and January 1. 
• Volunteer Time Off, parental leave and unlimited paid sick days. 
• Generous childcare benefits for all full-time employees.

#LI-CC1

You are welcome here.

At SAS, it’s not about fitting into our culture – it’s about adding to it. We believe our people make the difference. Our inclusive workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers.

Additional Information 

To qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status. SAS is an equal opportunity employer. All qualified applicants are considered for employment without regard to any characteristic protected by law. Read more: Know Your Rights.

Resumes may be considered in the order they are received. SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process. 

SAS only sends emails from verified “sas.com” email addresses and never asks for sensitive, personal information or money. If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact Recruitingsupport@sas.com. 

Let’s stay in touch! Join our Talent Community to stay up to date on company news, job updates and more.

SASCLOUD

#SAS