Manager vulnerability Management / Cyber Risk Management

NO SPONSORSHIP - NO OPT

Manager Vulnerability Management / Cyber Risk Management

SALARY : $k - $k plus 20% bonus

LOCATION : Remote except : NO Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico

It is all around leadership skills, soft skills, relationship building

The ideal candidate will come up through vulnerability management, pen testing, red teaming, etc.

Work across the enterprise, quality deliverables, tool road map

You will be managing over 13 people, 6 Full time and 7 contractors

Could be in a leadership role without the title and maybe one year of management or more

Highly technical people who are climbing

Looking for an experienced manager that is responsible for developing and leading a high-performing team focused on vulnerability management, including vulnerability discovery, risk-based prioritization, and enterprise remediation coordination. This role oversees the design, delivery, and continuous improvement of services that reduce technology risk through scalable vulnerability identification and tracking processes, platform ownership, and stakeholder collaboration. Strongly preferred scoring systems CVSS security benchmarks CIS NIST Scanning tools SAST SCA IAST automation for vulnerability management machine learning generative AI agent based systems large language models

Technical & Domain Expertise

• Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques
• Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network / Infrastructure, Cloud, etc.) across the technology stack
• Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability
• Skilled in analyzing business and technical requirements and translating them into effective solutions, technical plans, roadmaps, budgets, and proposals that support cyber program growth and align with cyber and organizational goals
• Commitment to continuous learning with the ability to research and enhance technical and domain-specific knowledge to support rapidly changing environments

Execution & Operational Management