Tokio Marine HCC
Job Title:
Vulnerability Manager
Location:
Houston, TX (Hybrid - 4 days onsite / 1 day remote)
Job Summary
We are seeking a
proactive, detail-oriented Vulnerability Manager
to lead our enterprise vulnerability management program. This role is responsible for identifying, assessing, prioritizing, and coordinating the remediation of security vulnerabilities across the organization's IT infrastructure, applications, and cloud environments.
The ideal candidate will possess a strong technical background in cybersecurity and a passion for improving the organization's security posture through
continuous risk reduction and operational excellence .
Key Responsibilities Develop and manage
the enterprise vulnerability management lifecycle, including scanning, assessment, reporting, and remediation tracking. Conduct regular vulnerability scans
using tools such as Qualys, Tenable, or similar platforms. Analyze scan results , validate findings, and collaborate with IT and development teams to prioritize and remediate vulnerabilities. Maintain an accurate asset inventory
and ensure comprehensive vulnerability coverage. Collaborate with threat intelligence and incident response teams
to assess exploitability and provide contextual risk insights. Track remediation efforts
and deliver regular status reports to leadership and stakeholders. Develop and maintain dashboards and metrics
to measure program effectiveness and demonstrate progress toward risk reduction. Stay current
on emerging threats, vulnerabilities, CVEs, and vendor advisories. Support compliance and audit activities
related to vulnerability management (e.g., PCI-DSS, ISO 27001, NIST). Provide training and guidance
to technical teams on secure configuration, patch management, and best practices in vulnerability management. Qualifications
Bachelor's degree
in Cybersecurity, Information Technology, Computer Science, or a related field. 5+ years of experience
in vulnerability management, security operations, or similar cybersecurity functions. Strong knowledge of
vulnerability scanning tools and techniques
(e.g., Qualys, Tenable, Rapid7). Familiarity with
industry compliance frameworks
such as PCI-DSS, ISO 27001, NIST, and CIS Controls. Proven ability to
influence remediation efforts and drive measurable risk reduction
in large, complex environments. Excellent
communication and stakeholder management skills , with the ability to translate technical risks into business context.
Vulnerability Manager
Location:
Houston, TX (Hybrid - 4 days onsite / 1 day remote)
Job Summary
We are seeking a
proactive, detail-oriented Vulnerability Manager
to lead our enterprise vulnerability management program. This role is responsible for identifying, assessing, prioritizing, and coordinating the remediation of security vulnerabilities across the organization's IT infrastructure, applications, and cloud environments.
The ideal candidate will possess a strong technical background in cybersecurity and a passion for improving the organization's security posture through
continuous risk reduction and operational excellence .
Key Responsibilities Develop and manage
the enterprise vulnerability management lifecycle, including scanning, assessment, reporting, and remediation tracking. Conduct regular vulnerability scans
using tools such as Qualys, Tenable, or similar platforms. Analyze scan results , validate findings, and collaborate with IT and development teams to prioritize and remediate vulnerabilities. Maintain an accurate asset inventory
and ensure comprehensive vulnerability coverage. Collaborate with threat intelligence and incident response teams
to assess exploitability and provide contextual risk insights. Track remediation efforts
and deliver regular status reports to leadership and stakeholders. Develop and maintain dashboards and metrics
to measure program effectiveness and demonstrate progress toward risk reduction. Stay current
on emerging threats, vulnerabilities, CVEs, and vendor advisories. Support compliance and audit activities
related to vulnerability management (e.g., PCI-DSS, ISO 27001, NIST). Provide training and guidance
to technical teams on secure configuration, patch management, and best practices in vulnerability management. Qualifications
Bachelor's degree
in Cybersecurity, Information Technology, Computer Science, or a related field. 5+ years of experience
in vulnerability management, security operations, or similar cybersecurity functions. Strong knowledge of
vulnerability scanning tools and techniques
(e.g., Qualys, Tenable, Rapid7). Familiarity with
industry compliance frameworks
such as PCI-DSS, ISO 27001, NIST, and CIS Controls. Proven ability to
influence remediation efforts and drive measurable risk reduction
in large, complex environments. Excellent
communication and stakeholder management skills , with the ability to translate technical risks into business context.