SOC Vulnerability Management Manager - Senior

About The Position

Requirements

• U.S. Citizenship is required
• Security Clearance: Secret Eligible
• Required Certifications: DCWF Work Role 541-Vulnerability Assessment Analyst — Intermediate proficiency; must hold ONE OR MORE of the following: CEH(P), RCCE Level 1, Cloud+, CPTE, FITSP-A, GCED, GCIH, GCSA, GICSP, GSEC, PenTest+, Security+
• 7+ years of experience in cybersecurity
• Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering
• Demonstrated ability to lead vulnerability management operations, including remediation prioritization, exception handling, compliance reporting, and closure tracking.
• Experience managing vulnerability findings in alignment with STIGs, IAVMs, RMF requirements, and DoD or ARNG cybersecurity directives.
• Experience coordinating remediation and risk reduction activities with system owners, ISSOs, engineering teams, and security operations personnel.
• Experience developing or maintaining POA&Ms and supporting continuous monitoring and audit readiness activities.
• Ability to analyze vulnerability metrics and trends and present actionable status and risk information to leadership.
• Experience supporting cybersecurity operations in classified and unclassified network environments.
• Experience contributing to compliance management and artifact maintenance, including eMASS update or integration activities.

Responsibilities

• Lead enterprise vulnerability management activities across supported ARNG environments, including scanning execution, finding validation, remediation prioritization, exception handling, and closure tracking.
• Establish and enforce governance processes for vulnerability identification, validation, reporting, and remediation in alignment with STIGs, IAVMs, RMF requirements, and ARNG and DoD cybersecurity directives.
• Oversee POA&M management to ensure high-risk findings are accurately documented, tracked to resolution, and reflected in continuous monitoring and compliance reporting.
• Coordinate with system owners, ISSOs, engineering teams, and SOC personnel to drive timely mitigation of vulnerabilities and reduce operational cyber risk across classified and unclassified enclaves.
• Monitor vulnerability management performance metrics, analyze trends, and provide leadership reporting that supports audit readiness, compliance management, and sustained risk reduction across the enterprise.
• Support Task 3 deliverables by integrating vulnerability management activities with broader cybersecurity operations, including continuous monitoring, secure baseline configuration, and compliance validation.
• Coordinate vulnerability management actions with ARNG cybersecurity stakeholders and external operational partners, including the NETCOM Global Cyber Center and DISA DCDC, to support DCO-IDM objectives across the DoDIN-A(NG) area of responsibility.
• Contribute to eMASS update and integration activities and ensure vulnerability artifacts, compliance status, and remediation actions are aligned with RMF support processes.
• Help inform enterprise defense by aligning vulnerability findings with SOC monitoring and analysis functions, including data flowing through USIEM, IDS/IPS, and related security operations processes.