Perform continuous vulnerability scanning and assessment across enterprise environments including endpoints, servers, cloud platforms, and applications.
Analyze vulnerability scan results and prioritize remediation activities based on risk, exploitability, asset criticality, and business impact.
Coordinate remediation activities with infrastructure, desktop, server, network, cloud, and application teams.
Track vulnerabilities through full remediation lifecycle and ensure compliance with established SLAs.
Validate remediation activities through rescanning and verification processes.
Support emergency remediation activities for critical vulnerabilities and zero-day threats.
Maintain and improve vulnerability management tools and scanning platforms.
Support deployment and tuning of endpoint security technologies including EDR/XDR solutions.
Assist in security incident response investigations involving vulnerable or compromised systems.
Collaborate with SOC teams for threat detection, threat intelligence correlation, and vulnerability exploitation monitoring.
Support patch management governance and deployment reporting processes.
Develop automation opportunities to improve vulnerability remediation efficiency.
Develop operational and executive-level vulnerability management dashboards and reports.
Track and report KPIs including - Vulnerability aging, SLA compliance, Critical vulnerability exposure, Patch compliance rates, Remediation trends
Present risk findings and remediation status to technical teams and leadership.
Support cybersecurity compliance initiatives aligned with frameworks such as: NIST CSF 2.0, ISO 27001, CIS Controls
Assist with audit requests and evidence collection related to vulnerability management and patching.
Participate in development and maintenance of security policies, standards, and procedures.
Research emerging threats, vulnerabilities, and industry best practices.
Recommend security enhancements to reduce attack surface and improve cyber resilience.
Bachelor s degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
7+ years of cybersecurity or security engineering experience.
Hands-on experience with vulnerability management platforms such as: Rapid7, Tenable, Qualys, Microsoft Defender
Experience with patch management and endpoint administration.
Strong understanding of CVSS scoring, Vulnerability prioritization, Common attack techniques, Operating systems and enterprise infrastructure
Familiarity with Windows, Linux, Active Directory, cloud environments, and enterprise networking.
Experience working with SIEM and security monitoring technologies.
Preferred Qualifications:
Security Certifications such as:CISSP, Security+ ,GSEC, CEH
Experience with scripting or automation (PowerShell, Python, Bash).
Experience with cloud security platforms (Azure, AWS, Google Cloud Platform).
Experience supporting enterprise-scale vulnerability remediation programs.