FCC - Vulnerability Management Lead

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
• Experience in enterprise cybersecurity, vulnerability management, or risk management environments.
• Demonstrated experience supporting large-scale, complex IT and cybersecurity operations.
• Proven experience leading or supporting enterprise-level cybersecurity service delivery.
• Strong understanding of vulnerability management tools and methodologies
• Experience with vulnerability scanning tools (e.g., Tenable/Nessus, Qualys).
• Strong understanding of CVSS scoring, risk prioritization, and remediation workflows.
• Familiarity with patch management and configuration management processes.
• Knowledge of cloud and hybrid infrastructure security.
• Experience with reporting tools, dashboards, and metrics development.
• Strong analytical, problem-solving, and communication skills.
• Relevant cybersecurity certification demonstrating competence in vulnerability management, risk, or operations support. Examples may include: CISSP, CEH, CompTIA Security+, GIAC certifications (or equivalent).

Responsibilities

• Lead enterprise vulnerability management program across on-premises, cloud, and hybrid environments.
• Coordinate vulnerability scanning, assessment, and continuous monitoring activities.
• Oversee vulnerability tracking, remediation support, and lifecycle management.
• Perform trend analysis, risk prioritization, and reporting to stakeholders.
• Integrate vulnerability management with risk management and compliance programs (RMF, ISCM).
• Collaborate with SOC, engineering, and operations teams to remediate vulnerabilities.
• Develop metrics, dashboards, and reporting for executive and operational audiences.
• Ensure alignment with federal cybersecurity frameworks (e.g., NIST, FISMA).
• Identify systemic weaknesses and recommend remediation strategies.
• Support audits, assessments, and POA&M management activities