Apply Now

Rapid7 Vulnerability Management Lead

Remote • Posted 13 hours ago • Updated 13 hours ago

Contract W2

Contract Independent

No Travel Required

Remote

$45+

Fitment

Dice Job Match Score™

🔢 Crunching numbers...

Job Details

Skills

Rapid7 Insight-VM
CAP Management

Summary

Hello,

Position: Rapid7 Vulnerability Management Lead

Location: Remote

Role Summary
The Rapid7 Vulnerability Management Lead will serve as a critical enabler within the BDSC (Boeing Digital Security Center) organization, driving enterprise-wide vulnerability management operations using the Rapid7 Insight-VM platform. This role is the central coordination hub between Boeing's SOX compliance team and infrastructure operations, ensuring vulnerabilities are identified, prioritized, tracked, and remediated in alignment with Boeing's security standards, regulatory requirements, and organizational risk appetite.
The ideal candidate is a hands-on, detail-oriented security professional who combines deep Rapid7 platform expertise with strong cross-team collaboration skills and the ability to translate vulnerability data into clear, actionable risk insights for both technical teams and leadership.
Key Responsibilities
Monitor Rapid7 dashboards and reports to identify critical and high-severity vulnerabilities.
Track vulnerability remediation progress and follow up with infrastructure teams (Windows, Linux, Network, Endpoint).
Coordinate remediation activities and escalate blockers when required.
Create and track Corrective Action Plans (CAPs) for vulnerabilities that require formal risk tracking.
Perform vulnerability trend analysis and track aging vulnerabilities.
Prepare weekly vulnerability status reports and dashboards for leadership review.
Work with Rapid7 tool owners to review scan configurations and improve coverage.
Ensure vulnerability management activities align with Boeing security standards.
Log in to and manage daily operations within the Rapid7 platform (Insight-VM) including dashboards, reports, and asset views.
Monitor Rapid7 dashboards to identify and prioritize critical and high-severity vulnerabilities.
Customize and maintain Rapid7 dashboards and reporting views to improve visibility for security and leadership teams.
Support scan configuration review, fine-tuning, and coverage validation to ensure accurate vulnerability detection.
Perform vulnerability trend analysis, aging analysis, and risk prioritization based on severity and exposure.
Support asset inventory alignment and cleanup within Rapid7 to ensure accurate scan coverage.
Identify stale, inactive, or duplicate devices in Rapid7 and coordinate with the tool owner and infrastructure teams for cleanup and asset alignment.
Collaborate with the Rapid7 tool owner and security teams to improve scan coverage, reporting visibility, and vulnerability tracking effectiveness.
Vulnerability Exception Handling & False Positive Validation
Remediation Projects & Workflow Management in Rapid7
Ensure appropriate asset onboarding and scan coverage across infrastructure environments.
Required Skills
Skill Proficiency
Rapid7 Insight-VM / Vulnerability Management Platform Expert
Rapid7 Dashboard & Report Creation Expert
Vulnerability Lifecycle Management Expert
Remediation Coordination & CAP Management Strong
Vulnerability Trend & Aging Analysis Strong
Scan Configuration & Coverage Validation Proficient
Asset Inventory Management in Rapid7 Proficient
Security Reporting Strong
Risk Score Interpretation & CVSS Analysis Strong
Infrastructure Knowledge Proficient
Rapid7 Query Builder & Data Filtering Proficient
Dynamic Asset Groups & Tagging Management Strong

Core Competency Requirements
Strong hands-on experience with Rapid7 Insight-VM / Rapid7 Vulnerability Management platform
Demonstrated experience in vulnerability analysis, remediation coordination, and security reporting
Solid knowledge of CVSS scoring, vulnerability lifecycle, and industry-standard remediation practices
Proven experience creating and maintaining Rapid7 dashboards, reports, and analytics views
Ability to coordinate and collaborate with multiple infrastructure, security, and compliance teams
Experience creating and managing Corrective Action Plans (CAPs) and formal risk tracking documentation
Familiarity with Boeing security standards or equivalent enterprise-level security governance frameworks

Preferred / Nice-to-Have Skills
Experience working within SOX-aligned or compliance-driven security environments
Experience with ticketing platforms for vulnerability tracking (ServiceNow, Jira, Remedy)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91103987
Position Id: 8935829
Posted 13 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Vulnerability Management Engineer

Remote

•

Today

An insurance SaaS company is looking for a Vulnerability Management Engineer. You'll be responsible for triaging and prioritizing security vulnerabilities across their IT infrastructure, applications and systems. You'll perform vulnerability management using tools like Rapid7, Brinqa, and Orca, while also conducting remediation and patching processes. You'll built custom automation playbooks in Python. This role is remote. Required Skills & Experience 5+ YOE with vulnerability management engine

Easy Apply

Contract

$65 - $77

Cloud Security Engineer

Remote

•

9d ago

Cloud Security Engineer Remote ok if if PSTW2 Only!!No C2C!! MUST HAVE EXCEPTIONAL COMMUNICATION SKILLS Key Qualifications: Requires 5+ years of experience in vulnerability management Excellent knowledge about common security vulnerabilities Experience in network, systems, web, and infrastructure security Very good understanding of 3rd party cloud and container security, components, and strategies Experience with creating custom dashboards for reporting security posture to engineering/leade

Easy Apply

Contract

$55 - $60

Lead Azure Security Consultant - 100% remote

Remote

•

Today

Job Title: Lead Azure Security Consultant Location: Remote Duration: 6-12 months Position Overview: We are seeking an experienced Lead Azure Security Consultant to spearhead an Azure Vulnerability Burn-Down initiative. The primary goal of this effort is to remediate Wiz-identified vulnerabilities across Virtual Machines (VMs), Platform as a Service (PaaS), and Azure Kubernetes Service (AKS) by the end of 2026. The ideal candidate will lead the security remediation efforts, prioritize issues,

Contract

70-85/hr

Lead Information Security Engineer - Vulnerability Management

Remote

•

Today

Make banking a Fifth Third better We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank. The Lead Information Security Engineer on the Enterprise Vulnerability Management (EVM) Remediation team will support the continuous vulnerability remediation process and reduce the Fifth Third Bank's attack surface across infrastructure, endpoints, and applications on prem and in cloud environments. The ideal candidate excels

Full-time

USD 82,100.00 - 172,500.00 per year

Search all similar jobs