Tokio Marine HCC
Job Title:
Vulnerability Manager
Location:
Houston, TX (Hybrid – 4 days onsite / 1 day remote)
Job Summary We are seeking a proactive, detail-oriented Vulnerability Manager to lead our enterprise vulnerability management program. This role is responsible for identifying, assessing, prioritizing, and coordinating the remediation of security vulnerabilities across the organization’s IT infrastructure, applications, and cloud environments. The ideal candidate will possess a strong technical background in cybersecurity and a passion for improving the organization’s security posture through continuous risk reduction and operational excellence.
Key Responsibilities
Develop and manage the enterprise vulnerability management lifecycle, including scanning, assessment, reporting, and remediation tracking.
Conduct regular vulnerability scans using tools such as Qualys, Tenable, or similar platforms.
Analyze scan results, validate findings, and collaborate with IT and development teams to prioritize and remediate vulnerabilities.
Maintain an accurate asset inventory and ensure comprehensive vulnerability coverage.
Collaborate with threat intelligence and incident response teams to assess exploitability and provide contextual risk insights.
Track remediation efforts and deliver regular status reports to leadership and stakeholders.
Develop and maintain dashboards and metrics to measure program effectiveness and demonstrate progress toward risk reduction.
Stay current on emerging threats, vulnerabilities, CVEs, and vendor advisories.
Support compliance and audit activities related to vulnerability management (e.g., PCI-DSS, ISO 27001, NIST).
Provide training and guidance to technical teams on secure configuration, patch management, and best practices in vulnerability management.
Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
5+ years of experience in vulnerability management, security operations, or similar cybersecurity functions.
Strong knowledge of vulnerability scanning tools and techniques (e.g., Qualys, Tenable, Rapid7).
Familiarity with industry compliance frameworks such as PCI-DSS, ISO 27001, NIST, and CIS Controls.
Proven ability to influence remediation efforts and drive measurable risk reduction in large, complex environments.
Excellent communication and stakeholder management skills, with the ability to translate technical risks into business context.
Seniority Level Mid-Senior level
Employment Type Full-time
Job Function Other
Industries Insurance
#J-18808-Ljbffr
Vulnerability Manager
Location:
Houston, TX (Hybrid – 4 days onsite / 1 day remote)
Job Summary We are seeking a proactive, detail-oriented Vulnerability Manager to lead our enterprise vulnerability management program. This role is responsible for identifying, assessing, prioritizing, and coordinating the remediation of security vulnerabilities across the organization’s IT infrastructure, applications, and cloud environments. The ideal candidate will possess a strong technical background in cybersecurity and a passion for improving the organization’s security posture through continuous risk reduction and operational excellence.
Key Responsibilities
Develop and manage the enterprise vulnerability management lifecycle, including scanning, assessment, reporting, and remediation tracking.
Conduct regular vulnerability scans using tools such as Qualys, Tenable, or similar platforms.
Analyze scan results, validate findings, and collaborate with IT and development teams to prioritize and remediate vulnerabilities.
Maintain an accurate asset inventory and ensure comprehensive vulnerability coverage.
Collaborate with threat intelligence and incident response teams to assess exploitability and provide contextual risk insights.
Track remediation efforts and deliver regular status reports to leadership and stakeholders.
Develop and maintain dashboards and metrics to measure program effectiveness and demonstrate progress toward risk reduction.
Stay current on emerging threats, vulnerabilities, CVEs, and vendor advisories.
Support compliance and audit activities related to vulnerability management (e.g., PCI-DSS, ISO 27001, NIST).
Provide training and guidance to technical teams on secure configuration, patch management, and best practices in vulnerability management.
Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
5+ years of experience in vulnerability management, security operations, or similar cybersecurity functions.
Strong knowledge of vulnerability scanning tools and techniques (e.g., Qualys, Tenable, Rapid7).
Familiarity with industry compliance frameworks such as PCI-DSS, ISO 27001, NIST, and CIS Controls.
Proven ability to influence remediation efforts and drive measurable risk reduction in large, complex environments.
Excellent communication and stakeholder management skills, with the ability to translate technical risks into business context.
Seniority Level Mid-Senior level
Employment Type Full-time
Job Function Other
Industries Insurance
#J-18808-Ljbffr