Vulnerability Management & Remediation Coordination Lead

Allied Consultants, Inc.•Austin, TX

1d•Remote

About The Position

Allied Consultants, Inc is an Austin-based firm with over 34 years of experience delivering top-tier technical and business professionals within Texas State Agencies. They are currently seeking an experienced Vulnerability Management & Remediation Coordination Lead to play a key role within a high-impact technical services team. Allied Consultants values its consultants and is committed to providing an exceptional experience including highly competitive pay rates, local support staff for responsive, personal service, and a comprehensive benefits package. Candidates selected for interviews will be subject to a criminal background check and may be required to pass a drug screening, in compliance with federal and state regulations. All offers of employment are contingent upon successful completion of these checks. Allied Consultants is a proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Requirements

Experience in Vulnerability Inventory and Baseline Establishment
Experience in Risk Classification and Prioritization
Experience in tracking vulnerability remediation
Experience in producing status reports
Experience in validating remediation actions through available evidence, including vulnerability scan results

Responsibilities

Review the Agency’s existing vulnerability data, including vulnerabilities identified through scanning, assessments, or other security tools.
Establish and maintain a consolidated vulnerability baseline.
Develop and document a remediation timeline for all identified vulnerabilities, reflecting current risk posture and aging.
Ensure that vulnerabilities are categorized and prioritized based on risk, severity, exploitability, and potential impact to Agency operations.
Align vulnerability classification and prioritization to applicable NIST guidance.
Validate that remediation timeframes align with Agency established expectations for different vulnerability risk levels.
Coordinate remediation activities with system, server, and application owners.
Communicate clear remediation expectations, risk context, and required timelines to responsible parties.
Track remediation progress and identify blockers, dependencies, or delays impacting closure.
Escalate overdue, high risk, or critical vulnerabilities to appropriate Agency governance or oversight bodies, in accordance with Agency processes.
Maintain ongoing tracking of vulnerability remediation status.
Produce periodic status reports summarizing.
Validate remediation actions through available evidence, including vulnerability scan results or other supporting artifacts.
Confirm closure of vulnerabilities in tracking systems once remediation is completed and validated.
Ensure vulnerabilities that cannot be remediated within required timeframes are formally documented and supported by approved risk acceptance or exception documentation, in accordance with Agency policy.
Identify process gaps, systemic issues, or control weaknesses affecting vulnerability remediation effectiveness.
Provide recommendations for improving vulnerability remediation processes and accountability, aligned with NIST standards and Agency governance requirements.