Staff Infosec Engineer

About Gap Inc.

Our past is full of iconic moments - but our future is going to spark many more. Our brands - Gap, Banana Republic, Old Navy and Athleta - have dressed people from all walks of life and all kinds of families, all over the world, for every occasion for more than 50 years.

But we're more than the clothes that we make. We know that business can and should be a force for good, and it's why we work hard to make product that makes people feel good, inside and out. It's why we're committed to giving back to the communities where we live and work. If you're one of the super-talented who thrive on change, aren't afraid to take risks and love to make a difference, come grow with us.
About the Role

We are seeking an experienced Vulnerability Management Specialist and Strategist to join GAP Inc.'s cybersecurity team. In this role, you will be responsible for streamlining our vulnerability management program, developing strategies to mitigate risks, and ensuring the security of our systems and data. You will work closely with cross-functional teams to identify, assess, and remediate vulnerabilities, and provide expert guidance on best practices and emerging threats.
What You'll Do

• Conduct regular vulnerability assessments and scans to identify security weaknesses in systems, applications, and networks
• Continuously monitor systems for new vulnerabilities and emerging threats, and generate detailed reports on vulnerability status, trends, and remediation progress
• Experience in Risk based Vulnerability Prioritization and remediation
• Develop and implement remediation plans to address identified vulnerabilities, collaborating with IT and development teams to ensure timely resolution
• Ensure compliance with industry standards and regulatory requirements related to vulnerability management, and develop and maintain vulnerability management policies, procedures, and best practices
• Supports Compliance & Risk Management activities related to Vulnerability Management Program
• Assess the potential impact of vulnerabilities on business operations and prioritize remediation efforts accordingly, providing recommendations for risk mitigation and security improvements
• Monitor Organization Network for any potential Zero Day Vulnerabilities/Exploits
• Ensure Rapid Response processes are rehearsed & kept up to date to handle any Zero Day Vulnerabilities or real time attacks
• Maintain strong partnerships with people to drive end to end Vulnerability Management program
• Educate the partnering teams on vulnerability management processes and security best practices, and stay updated on the latest security trends, tools, and technologies
• Assist in the investigation and response to security incidents related to vulnerabilities, coordinating with incident response teams to mitigate the impact of security breaches
• Publish periodic Vulnerability Management bulletin to InfoSec Leadership

Who You Are

• Bachelor s degree in related filed, to include computer science, or equivalent combination of education and experience
• 10+ years of experience in vulnerability management, cybersecurity, or a related field
• Proficiency in vulnerability assessment tools and experience with security frameworks and standards (e.g., NIST, ISO 27001)
• Proven understanding of Common Vulnerability Frameworks (CVE, CVSS, OWASP Top 10)
• Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions
• Excellent written and verbal communication skills, with the ability to convey technical information to non-technical stakeholders
• Proven ability to lead and mentor teams, and to work collaboratively with cross-functional team

Competencies:

• Leads with a Growth Mindset.
• Cultivates a Trusting Environment.
• Drives what Matters.
• Works with a 'One Team' Approach.

Benefits at Gap Inc.

• One of the most competitive paid time off plans in the industry
• Comprehensive health coverage for employees, same-sex partners and their families
• Health and wellness program: free annual health check-ups, fitness center and Employee Assistance Program
• Comprehensive benefits to support the journey of parenthood
• Retirement planning assistance
• See more of the benefits we offer.

Gap Inc. is an equal-opportunity employer and is committed to providing a workplace free from harassment and discrimination. We are committed to recruiting, hiring, training and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We have received numerous awards for our long-held commitment to equality and will continue to foster a diverse and inclusive environment of belonging. In 2022, we were recognized by Forbes as one of the World's Best Employers and one of the Best Employers for Diversity.

Client-provided location(s): Hyderabad, India

Job ID: gap-R188011

Employment Type: FULL_TIME

Posted: 2025-04-11T16:49:35