Manager, Vulnerability Management

About The Position

Requirements

• Minimally 5 years of experience in cybersecurity with 3+ years focused on vulnerability management, preferably within an IaaS CSP or technology provider.
• Comprehensive understanding of the vulnerability lifecycle, vulnerability scoring (CVSS, EPSS), remediation procedures and tracking, and common scanning tools (Qualys, Tenable, Rapid7).
• General understanding of a wide variety of software and technologies, including Linux distros, hypervisors, container orchestration tooling, network hardware and communications, etc.
• An understanding of enterprise security standards such as SOC 2, ISO 27001, NIST 800-53, FedRAMP, and GDPR.
• Ability to translate complex technical security concepts into clear narratives for a variety of technical stakeholders.
• Bachelor’s degree or equivalent experience in Computer Science, Cybersecurity, or a related field.
• Methodical, detail-oriented self-starter capable of managing multiple priorities under pressure in a fast-paced environment.

Responsibilities

• Manage and mentor a team of skilled analysts, overseeing performance, career development, and daily operational priorities.
• Partner with internal stakeholders to drive completion on complex remediation efforts, negotiate priorities and timelines, escalate blocked remediations, and maintain a risk-based approach to remediation prioritization.
• Identify opportunities for improvement, benchmark program maturity against industry frameworks, solicit feedback from internal stakeholders to improve remediation procedures, and incorporate lessons learned into policies and procedures.
• Serve as subject matter expert in internal and external audits, providing remediation evidence and policy attestations, and translate audit findings into actionable remediation plans.
• Serve as the primary vulnerability management authority during security incidents and security operational engagements.

Benefits

• 100% company-paid insurance premiums for employee medical, dental and vision plans.
• 401(k) plan that matches 100% up to 4%, with immediate vesting
• Professional Development Reimbursement of $2,500 each year
• 11 Holidays + Paid Time Off Accrual + Rollover Plan
• Increased PTO at 3 year and 10 year anniversary + 1 month paid sabbatical every 5 years + Anniversary Bonus each year
• $500 stipend for remote office setup in first year + $400 each following year
• Internet reimbursement up to $75 per month
• Gym membership reimbursement up to $50 per month
• Company paid Wellable subscription