CrawlJobs Logo

Vulnerability Management and Remediation Coordination Lead

signifytechnology.com Logo

Signify Technology

Location Icon

Location:
United States

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

70.00 - 80.00 USD / Hour
Save Job
Save Icon
Apply Position

Job Description:

You will own the end-to-end coordination of vulnerability remediation across the agency — from pulling together the current vulnerability picture, through prioritising what matters, through working with system, server, and application owners to actually get things fixed, through evidence-backed closure. The role is NIST-aligned and sits at the intersection of security operations and engineering accountability.

Job Responsibility:

  • Review existing vulnerability data from scans, assessments, and other security tools, and establish a consolidated baseline
  • Document a remediation timeline that reflects current risk posture and aging across the estate
  • Categorise and prioritise vulnerabilities by risk, severity, exploitability, and potential operational impact — aligned to NIST guidance
  • Validate that remediation timeframes match the agency's expectations for each risk level
  • Coordinate remediation with system, server, and application owners — communicating expectations, risk context, and timelines clearly
  • Track remediation progress and surface blockers, dependencies, and delays early
  • Escalate overdue, high-risk, or critical vulnerabilities to the appropriate governance or oversight bodies
  • Produce periodic status reports summarising remediation progress and outstanding risk
  • Validate remediation actions through available evidence — scan results and other supporting artifacts — and confirm closure in tracking systems
  • Where a vulnerability cannot be remediated within the required timeframe, document it formally with approved risk acceptance or exception paperwork
  • Identify process gaps, systemic issues, and control weaknesses, and recommend improvements aligned with NIST standards and agency governance

Requirements:

  • 8+ years building vulnerability inventories and establishing consolidated baselines across a large estate
  • 8+ years running risk classification and prioritisation aligned to NIST guidance
  • 8+ years tracking vulnerability remediation end-to-end, including coordination with system and application owners
  • 8+ years producing executive-ready status reports on remediation progress and outstanding risk
  • Demonstrated track record validating remediation actions through scan evidence and other supporting artifacts

Additional Information:

Job Posted:
May 04, 2026

Expiration:
August 31, 2026

Work Type:
Remote work
Icon
Signify Technology - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Vulnerability Management and Remediation Coordination Lead

Security Manager

A Security Manager role in Provo, United States, involving key responsibilities ...
Location
Location
United States , Provo
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strategically implement the security program
  • Oversee enterprise risk management
  • Facilitate risk remediation
  • Champion security governance
  • Direct IAM operations
  • Advance data protection
  • Coordinate security operations
  • Lead vulnerability and patch management
  • Strengthen third-party risk governance
  • Administer BC/DR initiatives
Job Responsibility
Job Responsibility
  • Strategically implement the security program
  • Oversee enterprise risk management
  • Facilitate risk remediation
  • Champion security governance
  • Direct IAM operations
  • Advance data protection
  • Coordinate security operations
  • Lead vulnerability and patch management
  • Strengthen third-party risk governance
  • Administer BC/DR initiatives
What we offer
What we offer
  • Medical insurance
  • Vision insurance
  • Dental insurance
  • Life and disability insurance
  • Access to 401(k) plan
  • Free online training
  • Fulltime
Read More
Arrow Right

Cybersecurity Red Team Project Manager

The Cyber Security Project Manager focuses on coordinating penetration testing p...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Technical expertise in system security vulnerabilities, remediation techniques, and network/web protocols (e.g., TCP/IP, UDP, IPSEC, HTTP)
  • experience in network, web application, and mobile penetration testing
  • familiarity with penetration testing tools and suites (e.g., Kali Linux, Burp Suite, Metasploit, Cobalt Strike, Mimikatz)
  • understanding of vulnerability scoring systems (CVSS) and frameworks (MITRE ATT&CK)
  • software development skills (C/C++, Java, Python) are advantageous
  • at least one relevant security certification (e.g., CEH, GPEN, GXPN, OSCP, OSC, or equivalent).
Job Responsibility
Job Responsibility
  • Coordinate all project activities with internal stakeholders (Lead Penetration Tester, Awareness Expert, Technical Quality Manager) and the customer
  • plan and execute penetration testing tasks, including scoping meetings and drafting the penetration testing plan
  • prepare and control access rights for penetration tests
  • refine and manage the security test calendar/schedule, ensuring tasks are executed according to plan
  • proactively inform stakeholders (e.g., ECB) about issues such as delays, resource unavailability, or other factors affecting testing or timelines
  • oversee quality assurance for penetration tests, including reviewing penetration testing reports
  • coordinate threat-based testing with the Lead Penetration Tester and awareness sessions with the Awareness Expert
  • support process improvement and documentation of vulnerability management in collaboration with the Technical Quality Manager
  • facilitate stakeholder communication and ensure completeness of handovers and knowledge transfer between resources.
What we offer
What we offer
  • Mobility options (including a company car)
  • insurance coverage
  • meal vouchers
  • eco-cheques
  • continuous learning opportunities through the Sopra Steria Academy
  • the opportunity to connect with fellow Sopra Steria colleagues at various team events.
  • Fulltime
Read More
Arrow Right

Application Manager

The Application Manager is responsible for taking ownership of SaaS application ...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-5 years of relevant experience
  • Experience in managing and implementing successful projects
  • Solid grasp of industry vulnerability ratings and classifications
  • Ability to take ownership and make technical decisions on a wide range of compliance and functional requirements
  • Skill in managing unexpected and urgent matters in a rapidly evolving environment
  • Experience with dependency management, change management, and audit/compliance requirements
  • Outstanding aptitude in task and deadline management
  • Demonstrated leadership skills, especially in circumstances when ‘leading without authority’ is required
  • Consistently demonstrates clear and concise written and verbal communication in English
  • Microsoft365 proficiency
Job Responsibility
Job Responsibility
  • Working with a team of Applications Development professionals to accomplish established goals and conduct personnel duties for team (e.g. performance evaluations, training and development, hiring and disciplinary actions) as well as act as an advisor or coach to mid-level developers and analysts
  • Leverage skills across multiple teams ensuring compliance with all Citi policies
  • Develop a sound familiarity with multiple information security domains and how they are implemented at Citi
  • Drive a wide range of tasks from scheduling vulnerability assessments and working with external parties to have all findings remediated, coordinating continuity of business testing, maintaining identity and access management best practices, and ensuring that AI/ML risk remains within Citi’s risk appetite
  • Utilize in-depth specialty knowledge of applications development to analyze complex problems/issues, provide evaluation of business processes, system processes, and industry standards, and make evaluative judgement
  • Contribute to planning, formulation of procedures, and process development, negotiating with external parties when necessary
  • Prioritize vulnerability remediation for internally hosted assets
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.
What we offer
What we offer
  • Global Benefits
  • We bring the best to our people. We put our employees first and provide the best-in-class benefits they need to be well, live well and save well.
  • Fulltime
Read More
Arrow Right

Cyber Defence Lead - Vulnerability & Disclosure Services

We are seeking an experienced cyber security professional to lead the Vulnerabil...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experienced cyber security professional with deep expertise in vulnerability management and remediation
  • Background in managing large‑scale scanning and reporting programmes
  • Hands‑on proficiency with vulnerability management tools, specifically Qualys
  • Strong understanding of networking fundamentals and core security concepts
  • Knowledgeable in industry cyber security standards, governance frameworks, and policy structures
  • Skilled in leading distributed teams and fostering high-performance cultures
  • Capable of influencing senior stakeholders and guiding change across complex environments
  • Strong analytical capability to translate technical risk into business-focused insights
  • Excellent written, verbal, and executive communication skills
Job Responsibility
Job Responsibility
  • Lead the Vulnerability Management and Responsible Disclosure services, ensuring alignment with Vodafone’s global policies and cyber strategy
  • Manage the full lifecycle of the Responsible Disclosure programme, including triage, validation, prioritisation, communication, and closure
  • Oversee vulnerability triage and prioritisation by applying strong risk‑based decision‑making and effective coordination with remediation teams
  • Drive improvements in automation, tooling effectiveness, and workflow optimisation to elevate efficiency and reduce manual workloads
  • Define, streamline, and own vulnerability management KPIs and reporting to offer transparent insights for leadership and stakeholders
  • Serve as a primary contact point for internal and external cyber security audits related to vulnerability management and disclosure processes
  • Lead cross-functional initiatives within Cyber Defence to enhance governance, delivery excellence, and operational maturity
  • Build, guide, and nurture a high-performing team through inclusive leadership, talent development, structured hiring, and succession planning
  • Promote strong engagement, continuous learning, and year‑on‑year improvements in team capability, efficiency, and retention
  • Fulltime
Read More
Arrow Right

Vulnerability Management Analyst

The Vulnerability Management Analyst is responsible for supporting and advancing...
Location
Location
United States
Salary
Salary:
85000.00 - 100000.00 USD / Year
radancy.com Logo
Radancy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in vulnerability management, GRC, security operations, or a related cybersecurity function.
  • Experience supporting vulnerability management in cloud and modern application environments.
  • Experience working with vulnerability and security tooling.
  • Strong understanding of vulnerability remediation, risk prioritization, compensating controls, exception handling, and escalation practices.
  • Ability to translate technical findings into business risk and remediation priorities for both technical and non-technical stakeholders.
  • Demonstrated experience coordinating across engineering, product, and management teams.
  • Strong analytical, organizational, and facilitation skills.
  • Excellent written and verbal communication skills.
Job Responsibility
Job Responsibility
  • Lead recurring vulnerability management roundtables with product engineering and IT departments.
  • Prepare and present prioritized vulnerability reviews for monthly meetings, driving clear remediation priorities for the next review cycle, focus teams on the highest risk vulnerabilities first.
  • Apply risk-based prioritization. Evaluate exploitability, exposure, and business impact to determine severity.
  • Promote remediation efforts that reduce risk across multiple teams or systems.
  • Track critical and high-risk findings against remediation timelines. Surface items nearing or exceeding SLA commitments.
  • Ensure each issue has a current remediation or mitigation plan and manage the timeline of remediation efforts.
  • Challenge unsupported “can’t fix” or “won’t fix” responses. Push for practical remediation paths when blockers exist.
  • Recommend compensating controls where full remediation is delayed.
  • Support formal exception and risk acceptance decisions.
  • Escalate stalled remediation and SLA risk to leadership.
What we offer
What we offer
  • Comprehensive medical coverage, with dental, vision and life insurance
  • Competitive 401(k) plan with employer matching
  • Unlimited flexible time off (FTO)
  • World-class training that keeps you at the forefront of innovation
  • Fulltime
Read More
Arrow Right

Cyber Security Manager

A leading housing association is seeking an experienced Cyber Security Manager t...
Location
Location
United Kingdom , Tameside
Salary
Salary:
56000.00 GBP / Year
goodmanmasson.com Logo
Goodman Masson
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years hands-on technical experience in network/security
  • 2+ years in a senior/lead cybersecurity role
  • Leadership of teams and delivery of security strategies/policies
  • Deep knowledge of key frameworks (ISO27001, NIST CSF, CIS Controls, Cyber Essentials Plus)
  • Experience in risk management, incident response, vulnerability management/remediation, third-party security, and stakeholder engagement
  • Relevant certifications (e.g., CISSP, CISM, CCNP Security, CEH, ISO27001 Lead Implementer/Auditor-or equivalent experience)
  • Degree in Cyber Security, IT, Computer Science (or equivalent experience)
Job Responsibility
Job Responsibility
  • Developing and maintaining security strategies, policies, standards, and procedures
  • Providing senior leadership with insightful reports, dashboards, and actionable recommendations
  • Leading cyber risk assessments, third-party risk management, vulnerability remediation, patch management
  • Overseeing incident management, coordinating audits, penetration testing, and contributing to disaster recovery/business continuity
  • Mentoring and developing the team
  • Building strong relationships with stakeholders, executive leaders, SOC partners, vendors, and auditors
  • Championing security awareness across the organisation
What we offer
What we offer
  • 24 days annual leave + 3 days Christmas closure + bank holidays
  • Flexible working: Compressed hours/4-day week possible
  • Hybrid (50% home working after probation)
  • Competitive pension (Social Housing Pension Scheme)
  • Occupational sick pay
  • BHSF health membership
  • Enhanced parental leave
  • Training/development opportunities
  • On-site gyms
  • Fulltime
Read More
Arrow Right

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right

Security Vulnerability Analyst

Stride is seeking a Security Vulnerability Analyst professional to drive the tec...
Location
Location
United States
Salary
Salary:
53944.50 - 100000.00 USD / Year
stridelearning.com Logo
Stride, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Three (3) years of experience in security operations or vulnerability management
  • Hands-on experience with Tenable, Qualys, or similar vulnerability platforms in cloud-native environments
  • Deep knowledge of cloud security principles, particularly around AWS and Azure services
  • Familiarity with regulatory frameworks (NIST CSF, SOX, FRAPRA)
  • Strong interpersonal and communication skills, with experience leading cross-functional remediation efforts
  • Ability to present risk findings to both technical and executive stakeholders
  • Ability to clear required background check
Job Responsibility
Job Responsibility
  • Lead/Assist vulnerability management operations across all cloud (AWS/Azure) and SaaS environments
  • Own the configuration, tuning, and operational use of vulnerability management tooling (Tenable One or equivalent)
  • Prioritize vulnerabilities using threat-based models (EPSS, CVSS, CISA KEVs), working closely with the SOC and threat intel teams
  • Serve as the primary liaison to Engineering, Infrastructure, and AppSec teams to coordinate remediation plans and validate fixes
  • Track and report remediation SLAs, exceptions, and risk acceptance items
  • Provide vulnerability metrics and trends for leadership, compliance, and audit purposes (SOX, FRAPRA)
  • Participate in incident response activities related to active exploitation or critical vulnerabilities
  • Develop SOPs, playbooks, and dashboards for vulnerability tracking and reporting
  • Document all vulnerability management policies, procedures, and standards and keep them update
  • Correlate vulnerability findings with threat intelligence feeds to assess real-world risk
What we offer
What we offer
  • health benefits
  • retirement contributions
  • paid time off
  • bonus (eligible employees)
  • Fulltime
Read More
Arrow Right