ZipRecruiter

Log In

1

Senior Vulnerability Management Jobs (NOW HIRING)

Cboe Global Markets

Sr. Vulnerability Analyst

Chicago, IL

$90K - $120K/yr

The Global Vulnerability Management team is hiring a Sr Vulnerability Analyst. Join a highly talented, dynamic and energetic team that's passionate about attack surface reduction and contributing ...

Dexian

Senior Vulnerability Engineer

Washington, DC · On-site

$118K - $162K/yr

W2 only Clearance: Public Trust eligibility required Vulnerability Engineer Seeking a Senior ... This role is responsible for engineering and optimizing vulnerability management capabilities using ...

next page

Showing results 1-20

People also search for

All JobsVulnerability Management JobsSenior Vulnerability Management Jobs

Senior Vulnerability Management information

See salary details

$25K

$80.3K

$163.5K

How much do senior vulnerability management jobs pay per year?

As of Jun 8, 2026, the average yearly pay for senior vulnerability management in the United States is $80,287.00, according to ZipRecruiter salary data. Most workers in this role earn between $41,500.00 and $103,000.00 per year, depending on experience, location, and employer.

What is the difference between Senior Vulnerability Management vs Vulnerability Analyst?

AspectSenior Vulnerability ManagementVulnerability Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CEH
Work EnvironmentOversees vulnerability programs, manages teams, develops strategiesPerforms vulnerability scans, analyzes findings, reports issues
Employer & Industry UsageUsed in large organizations, cybersecurity teams, IT departmentsCommon in security operations centers, IT security teams

Senior Vulnerability Management roles focus on leading vulnerability programs, strategy, and team management, while Vulnerability Analysts primarily conduct scans and analyze vulnerabilities. Both roles require similar certifications but differ in scope and responsibilities within cybersecurity teams.

What are the key skills and qualifications needed to thrive as a Senior Vulnerability Management professional, and why are they important?

To thrive as a Senior Vulnerability Management professional, you need deep knowledge of cybersecurity principles, threat analysis, and risk assessment, often supported by a relevant degree and certifications like CISSP, CISM, or CompTIA Security+. Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys), patch management systems, and security information and event management (SIEM) platforms is required. Strong analytical thinking, communication, and leadership skills are vital for prioritizing risks and collaborating across teams. These competencies are crucial for identifying, mitigating, and communicating security vulnerabilities to protect organizational assets and ensure regulatory compliance.

What does a Senior Vulnerability Management professional do?

A Senior Vulnerability Management professional is responsible for identifying, assessing, and mitigating security vulnerabilities within an organization's IT systems. They lead vulnerability scanning efforts, analyze threats, prioritize remediation actions, and collaborate with IT and security teams to implement solutions. In addition, they often develop vulnerability management policies, provide guidance on best practices, and report on the organization's security posture to leadership. Their role is crucial in reducing the risk of cyberattacks and ensuring compliance with security standards.

What are some common challenges faced by Senior Vulnerability Management professionals, and how can they be addressed?

Senior Vulnerability Management professionals often encounter challenges such as prioritizing vulnerabilities based on risk, coordinating remediation efforts across multiple teams, and managing a high volume of security findings. Addressing these challenges requires strong communication skills to collaborate effectively with IT, development, and business units, as well as the use of automation tools to streamline vulnerability scanning and reporting. Staying current with threat intelligence and regulatory requirements also helps in accurately assessing risks and ensuring comprehensive coverage.
More about Senior Vulnerability Management jobs
What cities are hiring for Senior Vulnerability Management jobs? Cities with the most Senior Vulnerability Management job openings:
What are the most commonly searched types of Vulnerability Management jobs? The most popular types of Vulnerability Management jobs are:
What states have the most Senior Vulnerability Management jobs? States with the most job openings for Senior Vulnerability Management jobs include:
What job categories do people searching Senior Vulnerability Management jobs look for? The top searched job categories for Senior Vulnerability Management jobs are:
Senior Vulnerability Management jobs near you
Infographic showing various Senior Vulnerability Management job openings in the United States as of May 2026, with employment types broken down into 99% Full Time, and 1% Temporary. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $80,287 per year, or $38.6 per hour.
Cybersecurity Vulnerability Management Specialist

Cybersecurity Vulnerability Management Specialist

PamTen Inc

Manhattan, NY

Other

Posted 5 days ago

Job description

Role: Cyber Command Vulnerability Management Specialist
Location: Brooklyn, New York (Hybrid)
 
SCOPE OF SERVICES
The Cyber Command Threat Management division requires a Senior Vulnerability Management Specialist to serve as a subject matter expert for vulnerability management:
Tasks
  • Research, analyze and brief management and team members on relevant Risk, CVE’s, CVSS, Vector Strings, NVD, Mitre, attack vectors and mitigations for various technologies
  • Design, architect and build Rapid7 vulnerability management scanning infrastructure and tools
  • Manage, configure and conduct Vulnerability Management scans in Rapid7 across various networks
  • Conduct vulnerability management analysis through industry research, deep analysis, generating of reports and dashboards in Rapid7 to accurately assess and prioritize risk
  • Evaluate security vulnerabilities, assess risk and impact, develop mitigation strategies, and implement remediation
  • Present succinct technical briefings to team members and customers for intel research, risk assessment, CVE’s, vendor hardware/software, and industry trends
  • Create scripts utilizing Python, PowerShell and others to automate vulnerability management tasks
  • The ability to automate detection, reporting and tracking of vulnerabilities identified
  • Create deep analysis and reports around vulnerability management utilizing Rapid7 dashboards and reports, scripts, Excel and PowerPoint
  • Travel within NYC for various projects when necessary
 
MANDATORY SKILLS/EXPERIENCE Note:
  • At least 10 years of experience in Cybersecurity, including vulnerability management scanning tools, vulnerability assessments, attack surface management, scripting, vulnerability intel analysis, vulnerability management scan result analysis, Excel
  • Strong knowledge of CVE’s, CVSS, Vector Strings, NVD, Mitre, attack vectors and mitigations
  • Experience with the design, architect and build of vulnerability management scanning infrastructure and tools specifically Rapid7; extensive hands-on experience conducting Rapid7 vulnerability scans across various networks; experience conducting Rapid7 vulnerability management analysis through reports and dashboards to accurately identify risk
  • Experience evaluating security vulnerabilities, assessing risk and impact, developing mitigation strategies, and implementing remediation
  • Experience conducting intel research around CVE’s, vendor hardware/software vulnerabilities, and presenting succinct technical overviews to team members and customers
  • Extensive experience with scripting such as Python and PowerShell to automate vulnerability management tasks
  • Extensive experience with Excel, especially for performing data analysis through VLookup and Pivot Tables
 
DESIRABLE SKILLS/EXPERIENCE:
  • Provide oral and written reports on vulnerability risk to the team and possibly agencies’ technical stakeholders
  • Ability to evaluate the current threat landscape that includes tactics, techniques and procedures
  • Work with agencies to evangelize the OTI Cyber Command program around areas of cybersecurity posture enhancement, risk reduction, attack surface management, vulnerability management scanning tool performance, scan results, credentialed scans, triage scan performance issues, socialize risk and remediation, and other vulnerability management issues
  • Experience using Tableau for reporting and analysis purposes
  • Strong background with next generation firewall products, intrusion detection systems, DMZ, IPSec, DNS, SMTP, HTTP, VPN, proxies, etc.
  • Knowledge of security best practices across multiple platforms, such as Microsoft Windows, VMWare, Linux, VPN, Cisco IOS, and Mobile OS Android/Apple IOS.
  • Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques
  • Knowledge of security best practices: NIST, CIS, Cisco, Juniper, Palo Alto, Fortinet, Checkpoint, F5, Microsoft, Unix/Linux, etc.
  • Ability to analyze Cybersecurity documentation, including security policies, plans, and procedures.
  • Extensive experience with Windows and Linux Servers
  • Exceptional written and oral communication skills
  • Exceptional organizational and analytical skills
  • Certifications such as Certified Information Systems Security Professional (CISSP) Certification, Security Essentials Certification (GSEC), Certified Intrusion Analyst (GCIA), Certified Incident Handler (GCIH), Certified Ethical Hacker (CEH), Certified Penetration Tester (CWAPT)

Apply