Vulnerabilities Test Manager

Job Title: Vulnerabilities Test Manager
Location: Plano, TX
Department: Cybersecurity / Network Security / Risk & Compliance
Employment Type: 3-Months Contract to Hire

Job Summary:

We are looking for a seasoned vulnerabilities test manager with deep expertise in telecom infrastructure and services to lead vulnerability testing across our complex, multi-vendor environment. You will be responsible for identifying, validating, and mitigating security vulnerabilities across mobile networks, IT systems, OSS/BSS platforms, and customer-facing applications. This role is key to safeguarding critical telecom services, subscriber data, and network integrity.

Key Responsibilities:

• Lead end-to-end vulnerability testing and assessments across telecom infrastructure, including mobile networks (2G/3G/4G/5G), core systems, IMS, transport, and data centers.
• Coordinate regular security testing of Operational Support Systems (OSS), Business Support Systems (BSS), and customer portals.
• Collaborate with network operations, IT, and engineering teams to prioritize and remediate identified vulnerabilities.
• Plan and execute vulnerability scans across IP/MPLS networks, signaling systems (SS7, Diameter), and VoIP platforms.
• Perform risk-based analysis of vulnerabilities using CVSS and telecom-specific threat intelligence.
• Validate remediation effectiveness and provide clear reporting to executive leadership and regulatory stakeholders.
• Stay current with telecom-specific security advisories from GSMA, ENISA, 3GPP, and other governing bodies.
• Manage telecom-focused security tools and platforms (e.g., signaling firewalls, DPI, SIEM, vulnerability scanners).
• Support compliance with regulatory and industry standards (e.g., ISO 27011, NIST, GDPR, TRAI, FCC, PCI-DSS).
• Engage with external security vendors, managed service providers, and threat intelligence platforms.

Required Qualifications:

• Bachelor's degree in telecommunications, computer science, information security, or a related field.
• 5+ years of experience in security testing or vulnerability management, with at least 2 years in a telecom environment.
• Hands-on experience with telecom infrastructure and protocols (e.g., SS7, SIP, Diameter, GTP, SCTP, and IPsec).
• Proficient in vulnerability scanning tools (Qualys, Nessus, Rapid7, Tenable) and telecom-grade firewalls and intrusion detection systems.
• Strong understanding of telecom standards and technologies: 4G/5G, IMS, VoLTE, VAS, network slicing, etc.
• Solid knowledge of CVE, CVSS scoring, OWASP Top 10, and mobile app security.
• Excellent communication and leadership skills, with the ability to engage both technical and business stakeholders.

Preferred Qualifications:

• Certifications such as CEH, OSCP, CISSP, GIAC, or GSMA NESAS-related credentials.
• Familiarity with CI/CD pipelines, DevSecOps, and cloud-native telecom platforms (e.g., AWS Wavelength, Azure MEC).
• Experience in regulatory audits and telecom security compliance frameworks.
• Understanding of cross-domain security in hybrid telecom networks (legacy and cloud-native).

Key Competencies:

• Telecom Network Security Expertise
• Threat Modeling & Risk-Based Prioritization
• Strong Analytical & Problem-Solving Skills
• Regulatory Awareness & Documentation
• Stakeholder Engagement & Reporting
• Team Leadership & Collaboration