1

Vulnerability Manager Jobs in Ohio (NOW HIRING)

Vulnerability Management Engineer

Canton, OH ยท On-site +1

$90 - $92/hr

Aug 3, 2026 Vulnerability Management Engineer Remote $92 / hourly as W2 About the Role Join our Cybersecurity team as a Senior Vulnerability Management Engineer, where you will play a critical role ...

Vulnerability Researcher Why Join Us? * Innovative Projects ... KBR's work is at the forefront of engineering, logistics, operations, science, program management ...

Vulnerability Researcher

Beavercreek, OH ยท On-site

$99K - $130K/yr

Vulnerability Researcher Why Join Us? * Innovative Projects ... KBR's work is at the forefront of engineering, logistics, operations, science, program management ...

Junior Vulnerability Researcher

Columbus, OH ยท On-site

$100K - $115K/yr

We conduct research and development, manage national laboratories, design and manufacture products ... Do you enjoy conducting vulnerability research from scratch? Do you have arguments over Ghidra vs.

next page

Showing results 1-20

Vulnerability Manager information

See Ohio salary details

$9

$20

$51

How much do vulnerability manager jobs pay per hour?

As of Jul 18, 2026, the average hourly pay for vulnerability manager in Ohio is $20.81, according to ZipRecruiter salary data. Most workers in this role earn between $16.44 and $20.10 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Vulnerability Manager, and why are they important?

To thrive as a Vulnerability Manager, you need expertise in risk assessment, vulnerability scanning, and cybersecurity fundamentals, typically supported by a degree in information security or a related field. Familiarity with tools like Nessus, Qualys, and vulnerability management platforms, as well as certifications such as CISSP or CEH, is often required. Strong analytical skills, attention to detail, and clear communication are crucial soft skills for effectively identifying issues and coordinating remediation efforts. These abilities ensure that organizations can proactively manage security risks and maintain robust defense against cyber threats.

What is the difference between Vulnerability Manager vs Security Analyst?

AspectVulnerability ManagerSecurity Analyst
CertificationsCertified Vulnerability Assessor (CVA), CISSP, CEHCISSP, Security+, CEH
Work EnvironmentOversees vulnerability assessments, manages teams, develops strategiesMonitors security systems, analyzes threats, responds to incidents
Employer & Industry UsageUsed in cybersecurity teams across industries to manage vulnerabilitiesCommonly employed in security operations centers (SOCs) to analyze threats

While both roles focus on cybersecurity, Vulnerability Managers primarily oversee vulnerability assessments and strategy, whereas Security Analysts focus on monitoring and incident response. Both roles require relevant certifications and work within cybersecurity teams, but their daily responsibilities and focus areas differ.

What does a Vulnerability Manager do?

A Vulnerability Manager is responsible for identifying, assessing, and mitigating security vulnerabilities within an organization's systems, networks, and applications. They oversee vulnerability scanning, analyze the results, prioritize risks, and work with various teams to implement remediation strategies. Their goal is to reduce the organization's exposure to cyber threats by ensuring that security weaknesses are addressed promptly and effectively.

What are some common challenges faced by Vulnerability Managers when prioritizing remediation efforts?

Vulnerability Managers often encounter challenges in balancing limited resources with a high volume of identified vulnerabilities. Prioritizing remediation efforts requires close collaboration with IT, development, and business teams to assess the potential impact and exploitability of each vulnerability. Additionally, they must stay updated on emerging threats, ensure compliance with industry standards, and communicate risk effectively to both technical and non-technical stakeholders. Navigating these complexities is essential for maintaining a strong security posture while minimizing disruption to business operations.
What cities in Ohio are hiring for Vulnerability Manager jobs? Cities in Ohio with the most Vulnerability Manager job openings:
Infographic showing various Vulnerability Manager job openings in Ohio as of July 2026, with employment types broken down into 83% Full Time, 15% Part Time, 1% Temporary, and 1% Contract. Highlights an 86% Physical, 1% Hybrid, and 13% Remote job distribution, with an average salary of $43,293 per year, or $20.8 per hour.

Vulnerability Management Specialist

Core Specialty

Cincinnati, OH โ€ข On-site

Full-time

Medical, Dental, Vision, Life, Retirement

Re-posted 23 days ago


Job description

The Vulnerability Management Specialist is a hands-on individual contributor responsible for executing Core Specialty's vulnerability management program across endpoints, servers, cloud resources, and applications. This role focuses on continuous vulnerability scanning, risk analysis, remediation coordination, and reporting, working closely with IT, Infrastructure, Endpoint, and Threat teams.
The ideal candidate is highly analytical, detail-oriented, and comfortable operating in a metrics-driven, SLA-based environment, with the ability to translate technical findings into actionable remediation guidance.
The selected candidate will be required to work a hybrid schedule (3 days in office/2 remote) out of our Dallas, TX, or Cincinnati, OH office. No relocation assistance is being offered with this role.
Key Accountabilities/Deliverables:
  • Conduct continuous vulnerability scanning across enterprise assets using Qualys and related tools.
  • Analyze scan results to validate findings, remove false positives, and assess exploitability.
  • Prioritize vulnerabilities using CVSS, Qualys Detection Score (QDS), asset criticality, and business impact.
  • Enforce remediation SLAs aligned to severity levels: Critical: 7 days, High: 30 days, Medium: 60 days, Low: 180 days.
  • Partner with Infrastructure, EUC, Cloud, and Application teams to drive timely remediation.
  • Support remediation activities using Qualys, Intune, JAMF, PolicyPak, and Microsoft Defender.
  • Ensure vulnerability management activities aligned with NIST, CIS Controls, ISO 27001, and insurance regulatory expectations.
  • Partner with Threat Intelligence and SOC teams to assess vulnerability exposure related to active threats.
  • Develop scripts (PowerShell) and workflows to support remediation, reporting, and validation.

Technical Knowledge and Understanding:
  • Strong understanding of: CVSS scoring and risk prioritization, patch management and remediation workflows, endpoint, server, and cloud security fundamentals.
  • Ability to analyze technical findings and communicate risk clearly to non-security teams.
  • Strong documentation and organizational skills.

Experience required:
  • 4+ years of experience in vulnerability management, security engineering, or threat operations.
  • Hands-on experience with vulnerability scanning platforms (Qualys preferred; Tenable/Rapid7 acceptable).
  • Experience working with Intune, JAMF, or similar endpoint management tools.

Certifications (Preferred):
  • CompTIA Security+
  • Qualys Vulnerability Management certifications
  • GIAC certifications (e.g., GSEC, GCIH)
  • CISSP (or progress toward certification)

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa for this position.
#LI-Hybrid
At Core Specialty, you will receive a competitive salary and opportunities for professional development and advancement. We offer medical, dental, vision, and life insurances; short and long-term disability; a Company-match of 100% of a 6% contribution 401(k) plan; an Employee Assistance Plan; Health Savings Account, Flexible Spending Account, Health Reimbursement Account, and a wellness program