.FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 90+ countries make better decisions. Join our world-class team today and fulfill your career potential!Job Summary**Job Description**:**Responsibilities**:- Collaborate with FICO Cyber Security Team, Business and IT partners, and clients.- Conducting required tasks for the vulnerability scanning program and publishing reported vulnerabilities to impacted teams for remediation.- Triage and risk rank vulnerabilities according to severity and exposure. Work with Product and IT teams to risk rank and patch vulnerabilities related to the technology stack. Develop remediation plans for vulnerabilities.- Participate in the development and implementation of new business initiatives involving security to ensure compliance with established policies.- Maintain the Threat Governance infrastructure including the delivery of enterprise wide vulnerability assessments, manage the communication, management, and resolution of findings across the enterprise and to external stakeholders.- Maintenance of an executive level dashboard and actionable metrics that reflect the current enterprise security posture.- Scan and report on the appropriate configuration standards, based on CIS, to ensure baselines are being met and compliance drift is managed.- Initiate improvement activity to reduce risk, ensure compliance, lower cost, and improve quality within IT processes.- Conduct/support periodic risk assessments and develop appropriate mitigation plans in support of deliverables.- Continuous review of configuration management and vulnerability management posture inside the company and knowledge of all external developments that could impact the threat posture, including vendor patches, zero-day exploits, end-of-life systems or deprecated services.- This role will have the responsibility of ensuring endpoint security solutions, policies and emerging technology are on track to meet and respond to the ever-present threat to our data and endpoint infrastructure- The ideal Threat Governance Engineer will be adept in learning new security capabilities, adaptable, take initiative, and be a team playerEducation/Experience Required:- Bachelor's degree in Computer Science or related field nice to have; equivalent work experience is acceptable- Experience in support of information technology teams/systems, networks, or related business processes- CISSP,CISM, or another similar info security/IT certification is desired or the willing to pursue CISSP or CISM.Skills/Experience:- Experience with Qualys or other security vulnerability detection technology required.- Must be able to multi-task and keep track of large amounts of information across disparate systems.- Ability to keep making progress and define future strategy/policy with regards to Enterprise TG.- Adherent to 'continuous monitoring' and 'continuous improvement' thought process