Vantive: A New Company Built On Our Legacy

Baxter is on a journey to separate our ~$5B Kidney Care segment into a standalone company. Vantive* will build on our nearly 70-year legacy in acute therapies and home and in-center dialysis to provide best-in-class care to the people we serve. We believe Vantive will not only build our leadership in the kidney care space, it will also offer meaningful work to those who join us.

At Vantive, you will become part of a community of people who are focused, courageous and don’t settle for the mediocre. Each of us are driven to help improve patients’ lives worldwide. Join us as we revolutionize kidney care and other vital organ support.

*Completion of the proposed separation of Kidney Care from Baxter into a standalone company (to be named Vantive) remains subject to the satisfaction of customary conditions.

Your role

The Senior Manager of Vulnerability and Threat Management serves as a key member of the Information Security leadership team and will act as a technical designer, problem solver, and team leader for the overall security organization. This Sr. Manager will act as an empowered team member planning and crafting initiatives to ensure vulnerabilities are detected, assessed, and addressed as risks determine. This individual will eventually lead a global team responsible for continuously monitoring networks and responding to cyber security threats, anomalies, and attacks, as well as responsible for monitoring systems and networks, identifying threats and responding to security incidents. Responsible for implementing, enhancing and optimizing the use of security tools and controls to meet security and policy requirements. Work with IT and business leadership to retain controls, processes and standards. In this role, the Sr Manager must also be able to articulate and intimately understand technical and complex information security threats, methodologies, frameworks, technologies, and architectures. They should draw from previous hands-on experience to navigate technical decisions and challenges. This deep level of knowledge and fundamental understanding is critical to appropriately presenting, prioritizing, and mapping disparate technical data to actionable business risks – as well as holding others accountable.

What you'll be doing

• Manage detection and response capabilities including software, third party security operations center, and threat hunting.
• Lead the team responsible for security investigations and digital forensics.
• Develop critical incident response program and manage security incidents and events to protect assets, including intellectual property, IT assets, and the company's reputation.
• Investigate security alerts and provide incident response.
• Monitor identity and access management, including monitoring for abuse of permissions by authorized system users.
• Develop and improve an information security and cyber defense management framework.
• Coordinate and manage external relationships as it relates to security assessment services as well as incident response requirements.
• Understand and get along with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services.
• Collaborate and assist with the development and communication of security policies and standards to ensure compliance.
• Provide strategic and tactical security guidance for all Enterprise IT projects, including the evaluation and recommendation of technical controls.
• Ensure that security programs are in compliance with applicable laws, regulations and policies to minimize or eliminate risk and audit findings.
• Liaise between the security team, risk management, IT, audit, legal and HR management teams as the need arises.
• Recruit, train, empower, mentor, lead, and retain quality security team members to ensure accurate progression and skillset coverage is in place as the information security program grows and matures.
• Develop business-relevant metrics to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation and increase the maturity of the security program.
• Assist with strategy/roadmap and identifies and recommends new technology solutions to meet business needs.

What you'll bring

• Minimum of 10+ years' IT or network security experience.
• Bachelor's degree in information systems or equivalent work experience.
• Knowledgeable of technological trends and developments in the area of security, privacy, and risk management.
• Knowledgeable of network fundamentals and protocols to be able to provide input into firewall, intrusion detection / prevention, penetration testing, and incident analysis and recommendations.
• Project management skills, scheduling and resource management.
• Knowledge of security, service, and control frameworks, such as ISO/IEC 27001, NIST, ITIL, SOX, and GDPR.
• Knowledge of latest information security technologies and services such as EDR, SOC, NDR, SIEM, SOAR, and XDR.
• Experience with contract and vendor negotiations and management including managed services.
• Experience with Cloud computing/Elastic computing across virtualized environments.
• Demonstrated leadership in a multi-cultural setting.
• Business process analysis, design, and improvement skills Team-oriented Ability to explain complex technical information clearly to business team members.
• Analytical and problem-solving skills, including the ability to communicate solutions/alternatives and influence the outcome of decisions.
• Self-starter with demonstrated initiative and hands-on. Strong drive with the ability to make things happen.
• Comfortable in a multifaceted environment.

Baxter is committed to supporting the needs for flexibility in the workplace. We do so through our flexible workplace policy which includes a minimum of 3 days a week onsite. This policy provides the benefits of connecting and collaborating in-person in support of our Mission.

We understand compensation is an important factor as you consider the next step in your career. At Baxter, we are committed to equitable pay for all employees, and we strive to be more transparent with our pay practices. The estimated base salary for this position is $144,000 to $198,000 annually. The estimated range is meant to reflect an anticipated salary range for the position. We may pay more or less than of the anticipated range based upon market data and other factors, all of which are subject to change. Individual pay is based on upon location, skills and expertise, experience, and other relevant factors. This position may also be eligible for discretionary bonuses, and/or long-term incentive. For questions about this, our pay philosophy, and available benefits, please speak to the recruiter if you decide to apply and are selected for an interview.

The successful candidate for this job may be required to verify that he or she has been vaccinated against COVID-19, subject to reasonable accommodations for individuals with medical conditions or religious beliefs that prevent vaccination, and in accordance with applicable law.

Equal Employment Opportunity

Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.

EEO is the Law 
EEO is the law - Poster Supplement
Pay Transparency Policy

Reasonable Accommodations

Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information.

Recruitment Fraud Notice

Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our Recruitment Fraud Notice.