Manager, Vulnerability Management Salary: Open + Bonus Location: Remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 8+ years of related experience At least 1 year of management experience Proven experience managing enterprise-scale vulnerability management programs and tools Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Responsibilities Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations
03/07/2025
Full time
Manager, Vulnerability Management Salary: Open + Bonus Location: Remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 8+ years of related experience At least 1 year of management experience Proven experience managing enterprise-scale vulnerability management programs and tools Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Responsibilities Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations
Request Technology - Craig Johnson
Oakland, California
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Manager of Cyber Security Risk and Vulnerabilities. Candidate will be responsible for developing and leading a high-performing team focused on vulnerability management, including vulnerability discovery, risk-based prioritization, and enterprise remediation coordination. This role oversees the design, delivery, and continuous improvement of services that reduce technology risk through scalable vulnerability identification and tracking processes, platform ownership, and stakeholder collaboration. The successful candidate will build strong relationships with key enterprise partners - including architecture, engineering, infrastructure, and application teams - to ensure vulnerabilities are understood, prioritized appropriately, and addressed in alignment with business risk tolerance. Through technical expertise and operational leadership, the manager will advance the maturity of the organization's vulnerability management program and its integration with broader cyber risk functions. The ideal candidate will balance strong technical fluency with people leadership, operational execution, and the ability to inspire a high-performing team in a dynamic cybersecurity landscape. Responsibilities: Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations Manages program metrics, reporting, and performance indicators to demonstrate business value, operational maturity, and continuous improvement Supports the organization's processes/methodologies, structure, culture, skills/experience, process support tools, knowledge resources, and other components Contributes to team culture by modelling integrity, inclusivity, accountability, and collaboration This list is not all-inclusive and you are expected to perform other duties as requested or assigned Qualifications: 8+ experience years with a Bachelor's degree; strong hands-on Supervisory/Management experience Industry certifications such as CISSP, GSEC, OSCP, or comparable security-related credentials are strongly preferred Proven experience managing enterprise-scale vulnerability management programs and tools Proven expertise in developing, mentoring, and retaining high-performing teams while fostering a mindful, inclusive, and trust-based team culture Strong ability to build trust, partnerships, and mutual support across many diverse teams Excellent communication and presentation skills, with the ability to convey technical concepts to diverse audiences and a strong emphasis on listening and understanding stakeholder needs Proven record of complex and creative problem-solving, and the desire to build, influence, and improve systems, programs, and processes Demonstrated background in strategic planning, service/program development, capability assessment, and building strong narratives to drive decision-making and create change Ability to understand how individual and team efforts align with broader organizational objectives, and to make decisions with enterprise-wide impact in mind Strong commitment to craftsmanship, with a focus on quality, accuracy, and clarity of work Technical & Domain Expertise: Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Skilled in analysing business and technical requirements and translating them into effective solutions, technical plans, roadmaps, budgets, and proposals that support cyber program growth and align with cyber and organizational goals Commitment to continuous learning with the ability to research and enhance technical and domain-specific knowledge to support rapidly changing environments Skilled in coordinating multiple concurrent projects with a clear understanding of the project life cycle, prioritization frameworks, and delivery expectations
02/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Manager of Cyber Security Risk and Vulnerabilities. Candidate will be responsible for developing and leading a high-performing team focused on vulnerability management, including vulnerability discovery, risk-based prioritization, and enterprise remediation coordination. This role oversees the design, delivery, and continuous improvement of services that reduce technology risk through scalable vulnerability identification and tracking processes, platform ownership, and stakeholder collaboration. The successful candidate will build strong relationships with key enterprise partners - including architecture, engineering, infrastructure, and application teams - to ensure vulnerabilities are understood, prioritized appropriately, and addressed in alignment with business risk tolerance. Through technical expertise and operational leadership, the manager will advance the maturity of the organization's vulnerability management program and its integration with broader cyber risk functions. The ideal candidate will balance strong technical fluency with people leadership, operational execution, and the ability to inspire a high-performing team in a dynamic cybersecurity landscape. Responsibilities: Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations Manages program metrics, reporting, and performance indicators to demonstrate business value, operational maturity, and continuous improvement Supports the organization's processes/methodologies, structure, culture, skills/experience, process support tools, knowledge resources, and other components Contributes to team culture by modelling integrity, inclusivity, accountability, and collaboration This list is not all-inclusive and you are expected to perform other duties as requested or assigned Qualifications: 8+ experience years with a Bachelor's degree; strong hands-on Supervisory/Management experience Industry certifications such as CISSP, GSEC, OSCP, or comparable security-related credentials are strongly preferred Proven experience managing enterprise-scale vulnerability management programs and tools Proven expertise in developing, mentoring, and retaining high-performing teams while fostering a mindful, inclusive, and trust-based team culture Strong ability to build trust, partnerships, and mutual support across many diverse teams Excellent communication and presentation skills, with the ability to convey technical concepts to diverse audiences and a strong emphasis on listening and understanding stakeholder needs Proven record of complex and creative problem-solving, and the desire to build, influence, and improve systems, programs, and processes Demonstrated background in strategic planning, service/program development, capability assessment, and building strong narratives to drive decision-making and create change Ability to understand how individual and team efforts align with broader organizational objectives, and to make decisions with enterprise-wide impact in mind Strong commitment to craftsmanship, with a focus on quality, accuracy, and clarity of work Technical & Domain Expertise: Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Skilled in analysing business and technical requirements and translating them into effective solutions, technical plans, roadmaps, budgets, and proposals that support cyber program growth and align with cyber and organizational goals Commitment to continuous learning with the ability to research and enhance technical and domain-specific knowledge to support rapidly changing environments Skilled in coordinating multiple concurrent projects with a clear understanding of the project life cycle, prioritization frameworks, and delivery expectations
*Remote But not allowed in the following States: Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico.* A prestigious company is looking for a Manager, Cyber Risk Vulnerability. This manager will lead a team with focus on vulnerability management and discovery, risk based prioritization, cloud/on-prem vulnerability, CVSS, Vulnerability scanning, Automation, etc. Responsibilities: Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations Manages program metrics, reporting, and performance indicators to demonstrate business value, operational maturity, and continuous improvement Qualifications 8+ years w/Bachelor's degree; 1+ years supervisory/management Industry certifications such as CISSP, GSEC, OSCP, or comparable security-related credentials are strongly preferred Proven experience managing enterprise-scale vulnerability management programs and tools Proven expertise in developing, mentoring, and retaining high-performing teams while fostering a mindful, inclusive, and trust-based team culture Demonstrated background in strategic planning, service/program development, capability assessment, and building strong narratives to drive decision-making and create change Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Skilled in analysing business and technical requirements and translating them into effective solutions, technical plans, roadmaps, budgets, and proposals that support cyber program growth and align with cyber and organizational goals
02/07/2025
Full time
*Remote But not allowed in the following States: Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico.* A prestigious company is looking for a Manager, Cyber Risk Vulnerability. This manager will lead a team with focus on vulnerability management and discovery, risk based prioritization, cloud/on-prem vulnerability, CVSS, Vulnerability scanning, Automation, etc. Responsibilities: Leads, coaches, and develops a team of engineers responsible for vulnerability discovery, assessment, risk-based prioritization, and remediation tracking across cloud, on-premises, and hybrid environments Envisions, defines, designs, builds, staffs, and delivers vulnerability management processes and capabilities Leads and supports the planning and execution of team goals and projects, including setting long-term strategy and making decisions about tools, technology, and staffing needs Partners closely with stakeholders across technology, including architecture, engineering, infrastructure, application development, and cyber risk management teams to facilitate vulnerability communications, support remediation activities, and provide continuous reporting. Collaborates with enterprise risk, compliance, and threat intelligence teams to ensure vulnerability management aligns with the organization's overall risk management strategy. Ensures all project deliverables meet high standards for accuracy, completeness, and impact, and are delivered on time to support team and organizational objectives Represents the vulnerability management program to senior leadership, delivering concise, risk-informed insights and recommendations Manages program metrics, reporting, and performance indicators to demonstrate business value, operational maturity, and continuous improvement Qualifications 8+ years w/Bachelor's degree; 1+ years supervisory/management Industry certifications such as CISSP, GSEC, OSCP, or comparable security-related credentials are strongly preferred Proven experience managing enterprise-scale vulnerability management programs and tools Proven expertise in developing, mentoring, and retaining high-performing teams while fostering a mindful, inclusive, and trust-based team culture Demonstrated background in strategic planning, service/program development, capability assessment, and building strong narratives to drive decision-making and create change Deep understanding of risk-based vulnerability management. Knowledge of vulnerability scoring systems (CVSS), security benchmarks (CIS, NIST), and risk quantification techniques Proficiency in selecting, implementing, and managing vulnerability scanning tools (eg, SAST, SCA, IAST, DAST, Network/Infrastructure, Cloud, etc.) across the technology stack Experience designing and implementing automation for vulnerability management processes using generative AI, agent-based systems, large language models (LLMs), or machine learning to improve efficiency, effectiveness, and scalability Skilled in analysing business and technical requirements and translating them into effective solutions, technical plans, roadmaps, budgets, and proposals that support cyber program growth and align with cyber and organizational goals
Cybersecurity Architecture Permanent 120-150k per annum Dublin - 5 days a week in the office Will consider people looking to relocate to Ireland but need to have work visa or EU/UK passport. We are hiring for a Cybersecurity Architecture Senior Manager who will be responsible for developing and maintaining the cybersecurity architecture framework that supports the strategic goals of our retail company. This role involves designing, implementing, and overseeing the security architecture to ensure the protection of the company's information assets against cyber threats. This role is based in our Head Office in Dublin city centre, and reports to our Chief Information Security Officer. Key Responsibilities: Develop and maintain a comprehensive cybersecurity architecture framework that aligns with the company's business objectives and technology strategy. Lead the design and implementation of security solutions and controls across all technology layers, including network, cloud, application, and data. Collaborate with IT and business units to integrate security considerations into the technology architecture and project life cycles. Conduct security architecture reviews and risk assessments for new and existing systems, applications, and technologies. Define security standards, guidelines, and best practices for the secure development and deployment of IT systems and applications. Lead the cybersecurity architecture team, providing guidance, mentorship, and direction to team members. Work closely with the cybersecurity operations team to ensure that security architectures are effectively monitored and defended against threats. Participate in incident response activities, providing architectural insights and solutions to mitigate and recover from security incidents. Manage relationships with vendors and partners to evaluate and select security technologies and services, including negotiating contracts and overseeing service delivery. Prepare and manage the cybersecurity architecture budget and resource allocation. Qualifications & Experience: Bachelor's or Master's degree in Information Security, Computer Science, or a related field. Professional certifications such as CISSP, CISM, SABSA, or equivalent. Extensive experience in cybersecurity architecture, preferably in the retail sector or a similar industry. Strong knowledge of security frameworks (eg, NIST, ISO 27001) and architectural frameworks (eg, TOGAF, SABSA). Demonstrated ability to design and implement security solutions across various technology layers. Excellent leadership, communication, and interpersonal skills. Strategic thinker with the ability to translate business requirements into secure technological solutions. Proven ability to manage and prioritize a diverse workload. Competency Profile: Technical/professional knowledge Building Relationships Results Orientation Change Advocate Benefits: Competitive salary Comprehensive benefits package including our employee discount Opportunities for professional development and career progression A dynamic and collaborative work environment focused on innovation and growth
01/07/2025
Full time
Cybersecurity Architecture Permanent 120-150k per annum Dublin - 5 days a week in the office Will consider people looking to relocate to Ireland but need to have work visa or EU/UK passport. We are hiring for a Cybersecurity Architecture Senior Manager who will be responsible for developing and maintaining the cybersecurity architecture framework that supports the strategic goals of our retail company. This role involves designing, implementing, and overseeing the security architecture to ensure the protection of the company's information assets against cyber threats. This role is based in our Head Office in Dublin city centre, and reports to our Chief Information Security Officer. Key Responsibilities: Develop and maintain a comprehensive cybersecurity architecture framework that aligns with the company's business objectives and technology strategy. Lead the design and implementation of security solutions and controls across all technology layers, including network, cloud, application, and data. Collaborate with IT and business units to integrate security considerations into the technology architecture and project life cycles. Conduct security architecture reviews and risk assessments for new and existing systems, applications, and technologies. Define security standards, guidelines, and best practices for the secure development and deployment of IT systems and applications. Lead the cybersecurity architecture team, providing guidance, mentorship, and direction to team members. Work closely with the cybersecurity operations team to ensure that security architectures are effectively monitored and defended against threats. Participate in incident response activities, providing architectural insights and solutions to mitigate and recover from security incidents. Manage relationships with vendors and partners to evaluate and select security technologies and services, including negotiating contracts and overseeing service delivery. Prepare and manage the cybersecurity architecture budget and resource allocation. Qualifications & Experience: Bachelor's or Master's degree in Information Security, Computer Science, or a related field. Professional certifications such as CISSP, CISM, SABSA, or equivalent. Extensive experience in cybersecurity architecture, preferably in the retail sector or a similar industry. Strong knowledge of security frameworks (eg, NIST, ISO 27001) and architectural frameworks (eg, TOGAF, SABSA). Demonstrated ability to design and implement security solutions across various technology layers. Excellent leadership, communication, and interpersonal skills. Strategic thinker with the ability to translate business requirements into secure technological solutions. Proven ability to manage and prioritize a diverse workload. Competency Profile: Technical/professional knowledge Building Relationships Results Orientation Change Advocate Benefits: Competitive salary Comprehensive benefits package including our employee discount Opportunities for professional development and career progression A dynamic and collaborative work environment focused on innovation and growth
