Vulnerability Manager
Birmingham, AL ยท Hybrid
Vulnerability Manager Hybrid role - Birmingham on site 2-3 days per week 65,000 - 75,000 per annum (DOE) 12Month Fixed Term Contract We have an exciting opportunity for a Vulnerability Manager to ...
Birmingham, AL ยท Hybrid
Vulnerability Manager Hybrid role - Birmingham on site 2-3 days per week 65,000 - 75,000 per annum (DOE) 12Month Fixed Term Contract We have an exciting opportunity for a Vulnerability Manager to ...
Birmingham, AL ยท Hybrid
Vulnerability Manager Hybrid role - Birmingham on site 2-3 days per week 65,000 - 75,000 per annum (DOE) 12Month Fixed Term Contract We have an exciting opportunity for a Vulnerability Manager to ...
Richardson, TX ยท On-site
Role Summary We are seeking a Vulnerability Management Analyst to join a growing cybersecurity team in Richardson, TX . This onsite role supports 24x7 vulnerability management operations focused on ...
Richardson, TX ยท On-site
Role Summary We are seeking a Vulnerability Management Analyst to join a growing cybersecurity team in Richardson, TX . This onsite role supports 24x7 vulnerability management operations focused on ...
Pittsburgh, PA ยท On-site
Director, Information Security Purpose The Vulnerability Manager is responsible for leading the organization's vulnerability management program, ensuring the timely identification, assessment ...
Quick apply
Pittsburgh, PA ยท On-site
Director, Information Security Purpose The Vulnerability Manager is responsible for leading the organization's vulnerability management program, ensuring the timely identification, assessment ...
Phoenix, AZ ยท On-site
Vulnerability Engineer (Contract) Location: Greater Phoenix Area (Onsite/Hybrid) Duration: Contract (Potential Extension) Industry: Financial Services / Banking Overview A leading financial services ...
Phoenix, AZ ยท On-site
Vulnerability Engineer (Contract) Location: Greater Phoenix Area (Onsite/Hybrid) Duration: Contract (Potential Extension) Industry: Financial Services / Banking Overview A leading financial services ...
Beavercreek, OH ยท On-site
$99K - $130K/yr
Vulnerability Researcher Why Join Us? * Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
Beavercreek, OH ยท On-site
$99K - $130K/yr
Vulnerability Researcher Why Join Us? * Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
Burlington, MA ยท On-site
Responsibilities : โข Perform vulnerability scans using security tools such as Tenable, Qualys, Nessus, or Rapid7. โข Review scan results and identify critical, high, medium, and low-risk ...
Burlington, MA ยท On-site
Responsibilities : โข Perform vulnerability scans using security tools such as Tenable, Qualys, Nessus, or Rapid7. โข Review scan results and identify critical, high, medium, and low-risk ...
Beavercreek, OH ยท On-site
$99K - $130K/yr
Vulnerability Researcher Why Join Us? * Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
Beavercreek, OH ยท On-site
$99K - $130K/yr
Vulnerability Researcher Why Join Us? * Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
AL ยท On-site +1
$55K - $75K/yr
Vulnerability Assessment and Management * * Conduct regular vulnerability scanning using industry standard tools. * Ingest vulnerability reports for analysis. * Initiate device patching for ...
AL ยท On-site +1
$55K - $75K/yr
Vulnerability Assessment and Management * * Conduct regular vulnerability scanning using industry standard tools. * Ingest vulnerability reports for analysis. * Initiate device patching for ...
Burlington, MA ยท On-site
L.C. is seeking a dedicated Vulnerability Analyst to join their team for a 6-month duration. The role involves ensuring the security and integrity of systems through effective vulnerability ...
Burlington, MA ยท On-site
L.C. is seeking a dedicated Vulnerability Analyst to join their team for a 6-month duration. The role involves ensuring the security and integrity of systems through effective vulnerability ...
Austin, TX ยท On-site
Vulnerability Manager Expected Duration: 18 months Location: Hybrid, candidates should be local to the Austin area Responsibilities include (but are not limited to): Review vulnerability and ...
Quick apply
Austin, TX ยท On-site
Vulnerability Manager Expected Duration: 18 months Location: Hybrid, candidates should be local to the Austin area Responsibilities include (but are not limited to): Review vulnerability and ...
Alexandria, VA ยท On-site +1
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Quick apply
Alexandria, VA ยท On-site +1
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Alexandria, VA ยท Hybrid
Vulnerability Assessor Location: Alexandria, VA (Hybrid - Telework with periodic on-site support as required) Clearance: Active Secret Position Overview ASRC Federal is seeking a Vulnerability ...
Alexandria, VA ยท On-site +1
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Alexandria, VA ยท On-site +1
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Huntsville, AL ยท Remote
$55K - $75K/yr
Vulnerability Assessment and Management * * Conduct regular vulnerability scanning using industry standard tools. * Ingest vulnerability reports for analysis. * Initiate device patching for ...
Quick apply
Huntsville, AL ยท Remote
$55K - $75K/yr
Vulnerability Assessment and Management * * Conduct regular vulnerability scanning using industry standard tools. * Ingest vulnerability reports for analysis. * Initiate device patching for ...
Irvine, CA ยท On-site
Tata Consultancy Services is seeking a Vulnerability Engineer to enhance their vulnerability management processes. The role involves analyzing vulnerability findings, automating remediation ...
Irvine, CA ยท On-site
Tata Consultancy Services is seeking a Vulnerability Engineer to enhance their vulnerability management processes. The role involves analyzing vulnerability findings, automating remediation ...
Bethesda, MD ยท Remote
cFocus Software seeks a Vulnerability Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ...
Quick apply
Bethesda, MD ยท Remote
cFocus Software seeks a Vulnerability Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ...
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
Mclean, VA ยท On-site
$131K/yr
Mobile Vulnerability Researcher DESCRIPTION: We are seeking a highly skilled and motivated Vulnerability Researcher with a strong focus on the Apple iPhone or Google Android ecosystem. The ideal ...
Alexandria, VA ยท On-site
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Alexandria, VA ยท On-site
AnaVation is searching for a Vulnerability Manager to assist client leadership with the enterprise vulnerability management program, administering scanning platforms (Tenable and/or Qualys), driving ...
Chicago, IL ยท On-site
The Global Vulnerability Management Team is hiring a Vulnerability Analyst . Join a highly talented, dynamic and energetic team that's passionate about attack surface reduction and contributing ...
Chicago, IL ยท On-site
The Global Vulnerability Management Team is hiring a Vulnerability Analyst . Join a highly talented, dynamic and energetic team that's passionate about attack surface reduction and contributing ...
$37.5K - $47.1K
1% of jobs
$47.1K - $56.7K
5% of jobs
$56.7K - $66.3K
3% of jobs
$66.3K - $75.9K
0% of jobs
$75.9K - $85.5K
9% of jobs
$91K is the 25th percentile. Wages below this are outliers.
$85.5K - $95K
11% of jobs
$95K - $104.6K
5% of jobs
$104.6K - $114.2K
1% of jobs
The median wage is $117.2K / yr.
$114.2K - $123.8K
46% of jobs
$123.8K - $133.4K
13% of jobs
$133.4K - $143K
5% of jobs
$37.5K
$107.9K
$143K
| Aspect | Vulnerability | Penetration Tester |
|---|---|---|
| Primary Focus | Identifying security weaknesses and vulnerabilities in systems | Simulating cyberattacks to exploit vulnerabilities and test defenses |
| Certifications | CompTIA Security+, CEH, OSCP (for some roles) | OSCP, CEH, GPEN, CISSP (often overlapping) |
| Work Environment | Security analysis, vulnerability scanning, reporting | Active testing, exploitation, reporting |
| Industry Usage | Security assessment, risk management | Security testing, red teaming |
Vulnerability specialists focus on identifying weaknesses in systems, while penetration testers actively exploit those vulnerabilities to assess security effectiveness. Both roles require similar certifications and work in cybersecurity, but their methods and objectives differ: vulnerability analysts aim to find issues, whereas penetration testers simulate attacks to evaluate defenses.

Job Description Vulnerability Manager Hybrid role - Birmingham on site 2-3 days per week 65,000 - 75,000 per annum (DOE) 12Month Fixed Term Contract We have an exciting opportunity for a Vulnerability Manager to join a highperforming Business Change and Technology function on a 12month fixed term salaried contract. Reporting into the Information Security Manager, you will be responsible for managing, maintaining, and continuously improving the vulnerability management programme across a complex enterprise technology estate. This includes the identification, assessment, prioritisation, and remediation tracking of security vulnerabilities across onpremises systems, cloud environments, networks, applications, and endpoint devices.
This role plays a critical part in ensuring the organisation's technology environment remains secure, resilient, and aligned with internal security policies, legal and regulatory requirements, and industry best practice. The Opportunity - Vulnerability Manager Vulnerability Management & Analysis Lead the endtoend vulnerability management lifecycle, including discovery, scanning, validation, prioritisation, reporting, and remediation tracking. Operate and optimise vulnerability scanning platforms (e.g
Microsoft Defender Vulnerability Management, Edgescan, or equivalent). Conduct regular internal and external vulnerability assessments across infrastructure, applications, and cloud environments. Validate and analyse vulnerability data to ensure findings are accurate, contextualised, and relevant to the organisation's operational environment.
Identify and assess critical vulnerabilities and zeroday threats, determining when expedited remediation is required. Assess vulnerability severity based on realworld exploitability, considering threat intelligence, exposure, asset criticality, and compensating controls. Maintain a defensible position on exploitable vs nonexploitable vulnerabilities, clearly documenting risk decisions and rationale.
Assess and articulate business risk based on exploitability, asset value, and threat intelligence. Remediation Coordination Work closely with internal technical teams and thirdparty partners to ensure vulnerabilities are remediated within agreed SLAs and risk tolerances. Develop remediation plans, monitor progress, and escalate highrisk issues where necessary.
Support patch governance activities, ensuring both routine and emergency patching meets security requirements. Security Governance & Compliance Ensure vulnerability management activities align with internal information security policies, standards, and procedures. Support compliance with relevant regulatory and security frameworks (e.g
GDPR, PCI DSS). Produce regular vulnerability risk reports, dashboards, and KPIs for senior stakeholders. Provide evidence and reporting to support audits, penetration tests, and regulatory reviews.
Threat Intelligence & Continuous Improvement Integrate threat intelligence to prioritise remediation of actively exploited or highrisk vulnerabilities. Recommend and drive improvements to tools, processes, automation, and reporting to enhance programme maturity. Stay current with emerging vulnerabilities, zeroday threats, and vendor advisories.
Support incident response activities where vulnerabilities are linked to potential security events. What You'll Bring Proven experience in vulnerability management, cyber security operations, or a related technical security role. Strong handson experience with vulnerability management tooling (e.g
Microsoft Defender Vulnerability Management, Edgescan, or similar). Solid understanding of cloud platforms (Azure), operating systems (Windows, Linux), networking, and enterprise technologies. Strong knowledge of CVSS scoring, exploit analysis, and riskbased prioritisation.
Experience working in large, complex enterprise environments. Familiarity with regulatory and compliance requirements relevant to vulnerability management. Knowledge of SIEM, SOAR, EDR, and associated security tooling.
Strong analytical skills with the ability to translate technical risk into clear, executivelevel reporting. Experience supporting incident response and investigations. Excellent stakeholder management skills, with the confidence to challenge and influence both technical and nontechnical teams.
Strong understanding of patch management processes and operational constraints in businesscritical environments. Able to manage multiple competing priorities and make pragmatic, riskbased decisions. Qualifications Proven handson experience in vulnerability management or cyber security operations.
Demonstrable understanding of security principles, standards, and methodologies. One or more of the following certifications preferred: CISM, CISSP, CEH, CompTIA Security+, CompTIA CySA+, GIAC GVMS
Sourced by ZipRecruiter
Guided missile and space vehicle manufacturing
11 - 50 Employees
Orlando, FL, US
2007