Vulnerabilities Test Lead

Overview

On Site
Depends on Experience
Full Time
Accepts corp to corp applications
Able to Provide Sponsorship

Skills

CISSP
DevOps
Cyber Security
Cloud Computing
Penetration Testing
veracode
Testing
Scripting
Python
QA Management
Quality Assurance
Windows PowerShell

Job Details

Job Title: Vulnerabilities Test Lead

Location: Plano, TX

Job Type: 3-Months contract to hire

Department: Cybersecurity/Quality Assurance/IT Security

Job Summary:

We are seeking an experienced and proactive Vulnerabilities Test Lead to oversee the identification, testing, validation, and management of security vulnerabilities across systems, networks, applications, and cloud environments. The ideal candidate will lead vulnerability assessments, collaborate with cross-functional teams, and ensure timely remediation of threats while maintaining compliance with security standards.

Key Responsibilities:

Lead the vulnerability testing lifecycle: discovery, prioritization, validation, and tracking of vulnerabilities.

Manage and execute regular vulnerability assessments and penetration tests using industry-standard tools.

Collaborate with IT, DevOps, and application teams to triage findings and define remediation plans.

Validate resolved vulnerabilities through retesting.

Define and enforce testing standards, methodologies, and best practices.

Track KPIs and generate detailed vulnerability reports and executive summaries.

Stay current with emerging threats, vulnerabilities, and security advisories (CVEs, exploits, etc.).

Mentor and guide junior security testers and QA team members.

Ensure testing aligns with regulatory frameworks and industry standards (e.g., OWASP, NIST, ISO 27001, PCI DSS).

Required Qualifications:

  • Bachelor s degree in Computer Science, Information Security, or related field.
  • 5+ years of experience in vulnerability testing, security assessments, or penetration testing.
  • Strong understanding of common vulnerabilities and exposures (CVE), and vulnerability scoring systems like CVSS.
  • Hands-on experience with tools such as Nessus, Qualys, Burp Suite, Nmap, Metasploit, Nexpose, OpenVAS, etc.
  • Familiarity with web, network, and cloud security vulnerabilities.
  • Experience with SIEMs, EDR tools, and secure development lifecycle (SDLC).
  • Knowledge of scripting (Python, Bash, or PowerShell) to automate testing or analysis.

Preferred Qualifications:

  • Certifications such as OSCP, CEH, CISSP, GPEN, GWAPT, or CompTIA Security+.
  • Experience working in Agile/DevSecOps environments.
  • Exposure to cloud platforms like AWS, Azure, or Google Cloud Platform and related security controls.
  • Knowledge of CI/CD security integration and Infrastructure as Code (IaC) testing.

Key Competencies:

  • Strong analytical and problem-solving skills.
  • Excellent communication and collaboration abilities.
  • Leadership and project management capabilities.
  • High attention to detail and organizational skills.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.