Vulnerability Manager

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• 5+ years of experience in vulnerability management, security operations, or similar cybersecurity functions.
• Strong knowledge of vulnerability scanning tools and techniques (e.g., Qualys, Tenable, Rapid7).
• Familiarity with industry compliance frameworks such as PCI-DSS, ISO 27001, NIST, and CIS Controls.
• Proven ability to influence remediation efforts and drive measurable risk reduction in large, complex environments.
• Excellent communication and stakeholder management skills, with the ability to translate technical risks into business context.

Responsibilities

• Develop and manage the enterprise vulnerability management lifecycle, including scanning, assessment, reporting, and remediation tracking.
• Conduct regular vulnerability scans using tools such as Qualys, Tenable, or similar platforms.
• Analyze scan results, validate findings, and collaborate with IT and development teams to prioritize and remediate vulnerabilities.
• Maintain an accurate asset inventory and ensure comprehensive vulnerability coverage.
• Collaborate with threat intelligence and incident response teams to assess exploitability and provide contextual risk insights.
• Track remediation efforts and deliver regular status reports to leadership and stakeholders.
• Develop and maintain dashboards and metrics to measure program effectiveness and demonstrate progress toward risk reduction.
• Stay current on emerging threats, vulnerabilities, CVEs, and vendor advisories.
• Support compliance and audit activities related to vulnerability management (e.g., PCI-DSS, ISO 27001, NIST).
• Provide training and guidance to technical teams on secure configuration, patch management, and best practices in vulnerability management.