Vulnerability Management Lead

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
• (Equivalent experience may substitute for degree.)
• Minimum of 8 years of cybersecurity or information security experience
• Demonstrated experience with vulnerability management tools (ACAS) and processes
• Experience analyzing vulnerability scan results and coordinating remediation efforts
• Experience supporting cybersecurity compliance, assessment, or inspection activities
• Experience leading or mentoring technical cybersecurity personnel
• Strong understanding of vulnerability management lifecycle and remediation processes
• Ability to analyze security findings and determine appropriate mitigation strategies
• Strong leadership, initiative, and problem-solving abilities
• Excellent written and verbal communication skills
• Ability to coordinate across technical teams and organizational boundaries
• Strong organizational and tracking skills
• Ability to develop scripts or automation tools to improve operational efficiency
• Ability to work independently and lead technical initiatives
• Security+ required
• Active Secret clearance required

Nice To Haves

• Top Secret clearance preferred
• Experience working in classified or secure environments/networks highly preferred
• Experience with ARAD Tanium and network infrastructure preferred
• CISSP preferred

Responsibilities

• Lead vulnerability management activities including analysis, prioritization, mitigation, and tracking of vulnerabilities across supported systems and networks.
• Analyze vulnerability scan results using enterprise scanning tools and assess risk, severity, and remediation requirements.
• Coordinate with system administrators, engineers, and stakeholders to ensure timely remediation of identified vulnerabilities.
• Provide technical leadership, guidance, and support to vulnerability management team members.
• Develop and maintain vulnerability tracking processes, metrics, and reporting mechanisms.
• Prepare systems and supporting documentation for cybersecurity inspections, assessments, and compliance reviews.
• Track remediation activities and coordinate resolution of vulnerabilities through enterprise ticketing (ServiceNow) and workflow systems.
• Communicate vulnerability findings, remediation requirements, and risk posture to stakeholders and leadership.
• Develop scripts, tools, or automation to improve vulnerability analysis, reporting, and remediation processes.
• Maintain documentation of vulnerabilities, remediation status, and compliance artifacts.
• Monitor emerging threats, vulnerabilities, and security trends and provide recommendations for mitigation.
• Support continuous monitoring activities to ensure ongoing cybersecurity posture and operational readiness.