1

Vulnerability Manager Jobs in Utah (NOW HIRING)

This role oversees vulnerability management, continuous monitoring, audit support, security readiness activities, and compliance operations across infrastructure and product environments. This ...

This role oversees vulnerability management, continuous monitoring, audit support, security readiness activities, and compliance operations across infrastructure and product environments. This ...

The Sr. Manager will lead Security Operations, Incident Response, Vulnerability Management, Identity & Access Management and Monitoring functions, ensuring the organization can effectively identify ...

IT Security Operations Manager

Draper, UT · On-site

$120K - $150K/yr

Oversee the vulnerability management program, including scanning, prioritization, and remediation tracking * Partner with IT and application teams to reduce risk exposure and improve patching ...

Senior Security Engineer

West Jordan, UT · On-site

$106K - $146K/yr

Vulnerability Management platforms * Engineer secure cloud and hybrid infrastructure across Microsoft 365 and AWS * Develop security standards and hardening baselines Security Operations * Lead ...

next page

Showing results 1-20

Vulnerability Manager information

See Utah salary details

$8

$19

$49

How much do vulnerability manager jobs pay per hour?

As of Jul 16, 2026, the average hourly pay for vulnerability manager in Utah is $19.93, according to ZipRecruiter salary data. Most workers in this role earn between $15.77 and $19.28 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Vulnerability Manager, and why are they important?

To thrive as a Vulnerability Manager, you need expertise in risk assessment, vulnerability scanning, and cybersecurity fundamentals, typically supported by a degree in information security or a related field. Familiarity with tools like Nessus, Qualys, and vulnerability management platforms, as well as certifications such as CISSP or CEH, is often required. Strong analytical skills, attention to detail, and clear communication are crucial soft skills for effectively identifying issues and coordinating remediation efforts. These abilities ensure that organizations can proactively manage security risks and maintain robust defense against cyber threats.

What is the difference between Vulnerability Manager vs Security Analyst?

AspectVulnerability ManagerSecurity Analyst
CertificationsCertified Vulnerability Assessor (CVA), CISSP, CEHCISSP, Security+, CEH
Work EnvironmentOversees vulnerability assessments, manages teams, develops strategiesMonitors security systems, analyzes threats, responds to incidents
Employer & Industry UsageUsed in cybersecurity teams across industries to manage vulnerabilitiesCommonly employed in security operations centers (SOCs) to analyze threats

While both roles focus on cybersecurity, Vulnerability Managers primarily oversee vulnerability assessments and strategy, whereas Security Analysts focus on monitoring and incident response. Both roles require relevant certifications and work within cybersecurity teams, but their daily responsibilities and focus areas differ.

What does a Vulnerability Manager do?

A Vulnerability Manager is responsible for identifying, assessing, and mitigating security vulnerabilities within an organization's systems, networks, and applications. They oversee vulnerability scanning, analyze the results, prioritize risks, and work with various teams to implement remediation strategies. Their goal is to reduce the organization's exposure to cyber threats by ensuring that security weaknesses are addressed promptly and effectively.

What are some common challenges faced by Vulnerability Managers when prioritizing remediation efforts?

Vulnerability Managers often encounter challenges in balancing limited resources with a high volume of identified vulnerabilities. Prioritizing remediation efforts requires close collaboration with IT, development, and business teams to assess the potential impact and exploitability of each vulnerability. Additionally, they must stay updated on emerging threats, ensure compliance with industry standards, and communicate risk effectively to both technical and non-technical stakeholders. Navigating these complexities is essential for maintaining a strong security posture while minimizing disruption to business operations.
What cities in Utah are hiring for Vulnerability Manager jobs? Cities in Utah with the most Vulnerability Manager job openings:
Manager, Information Security, CX

Manager, Information Security, CX

NICE

Sandy, UT • On-site

Other

This job post has expired 1 day ago. Applications are no longer accepted.


Job description

Manager, Information Security, CX

Position Summary

The Manager, Security Operations, is responsible for leading operational security and compliance activities supporting regulated environments, including FedRAMP-authorized systems and PCI-regulated environments. This role oversees vulnerability management, continuous monitoring, audit support, security readiness activities, and compliance operations across infrastructure and product environments.

This position leads the Security Operations team and works cross-functionally with Security, Infrastructure, Product Engineering, Platform Operations, Compliance, and external assessors to ensure security risks, compliance obligations, and operational control requirements are identified, communicated, tracked, and remediated appropriately.

The role requires a combination of technical security knowledge, operational leadership, organizational discipline, and strong cross-functional coordination skills.

Job Functions & Responsibilities

 Lead the Security Operations team responsible for vulnerability management, continuous monitoring, and compliance support activities.
 Oversee vulnerability scanning, reporting, tracking, prioritization, and remediation coordination across infrastructure and product teams.
 Support and maintain FedRAMP continuous monitoring activities, including recurring reporting, inventory management, and audit evidence collection.
 Support operational security and compliance activities related to PCI DSS and other regulatory frameworks.
 Coordinate and oversee STIG/CIS benchmark validation activities and remediation efforts.
 Support internal and external audits including FedRAMP, PCI DSS, SOC 2, ISO 27001, and customer assessments.
 Ensure recurring compliance deliverables, operational reporting, and audit artifacts are completed accurately and on schedule.
 Coordinate cross-functional remediation efforts with Security, Engineering, Infrastructure, and Product teams.
 Support incident response readiness activities including tabletop exercises, training coordination, and operational documentation maintenance.
 Maintain and improve operational security processes, procedures, and workflows.
 Support resiliency and disaster recovery validation activities and associated compliance reporting.
 Communicate operational risk, remediation status, and compliance concerns to leadership and stakeholders.
 Drive continuous improvement initiatives focused on operational maturity, automation, audit readiness, and vulnerability management effectiveness.
 Follow all company policies, security standards, and applicable compliance requirements.

This job description is not intended to be all-inclusive, and employees may perform other related duties as assigned.

Education, Experience, & Skills

 3+ years of leadership or team lead experience in cybersecurity or security operations environments.
 5+ years of experience in cybersecurity, vulnerability management, compliance operations, or related technical security fields.
 Experience supporting security or compliance programs in regulated environments.
 Familiarity with vulnerability management processes, remediation coordination, and security assessment activities.
 Experience working with vulnerability scanning and reporting platforms such as Rapid7, Tenable, Qualys, or similar tools.
 Familiarity with security frameworks and compliance standards such as FedRAMP, PCI DSS, NIST 800-53, SOC 2, ISO 27001, or CIS benchmarks.
 Strong organizational, communication, and cross-functional coordination skills.
 Ability to manage recurring operational responsibilities and audit-driven deliverables in a fast-paced environment.
 Experience supporting incident response activities, resiliency exercises, or audit evidence collection preferred.
 Experience with public cloud environments such as AWS or Azure preferred.
 Bachelor's degree in cybersecurity, information systems, or related field preferred, or equivalent combination of education and experience.
 Security certifications such as Security+, CySA+, CASP+, CISSP, or similar certifications preferred.