CrawlJobs Logo

Vulnerability Remediation Manager, Security Testing Service

United States, McLean 147100.00 - 201400.00 USD / Year · Job Posted February 19, 2026
Apply Position
Job Link Share

Job Description

Security is essential to what we do at Capital One, from protecting customer data to the associate experience. As a Cyber Remediation Manager within the Security Testing Service, you see security as an enabler and differentiator to empower the business through innovation. You partner with the business, understanding their goals and objectives while helping teams incorporate cybersecurity best practices. You will consult on initiatives, programs, and projects to prioritize security risk reduction activities. You are pragmatic and practical in your understanding of software development and IT operations, and familiar with Capital One’s cybersecurity objectives. Using this knowledge, you collaborate and innovate with customers and colleagues to enhance the technology risk posture.

Job Responsibility

  • Serve as an Cyber Security Remediation subject matter expert
  • Collaborate with a team of Information Security professionals to provide subject matter expertise to business project & engineering teams
  • Evaluate the status of Cyber control programs through analysis of information security metrics
  • Articulate operations, compliance, and cybersecurity objectives for business leadership to inform prioritized risk reduction
  • Effectively communicate the impact of operations, compliance, and cybersecurity gaps to multiple audiences, encouraging remediation activities to enhance their cybersecurity posture
  • Lead activities in response to large-scale enterprise remediation efforts

Requirements

  • High School Diploma, GED, or equivalent certification
  • At least 4 years of experience with vulnerability identification and management
  • At least 4 years of experience with IT operations
  • At least 4 years of experience with technology or cyber security risk management frameworks

Nice to have

  • CISSP, CEH, AWS Cloud Practitioner or AWS Certified Solutions Architect Associate certification
  • Experience with monitoring, gathering, and assessing artifacts as part of continuous security monitoring (C&A, PO&AM, NIST 800-37)
  • Experience in operational compliance or IT audit
  • Experience as a Systems Administrator or Network Administrator
  • Experience with Static and Dynamic Application Security Testing, scanning tools and processes
  • Experience utilizing Agile methodologies

What we offer

  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Vulnerability Remediation Manager, Security Testing Service

8 matching positions

New

Cyber Security Manager

Robert Half is proactively recruiting experienced Cyber Security Managers for up...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience in cybersecurity, systems administration, or network administration
  • Strong background securing Windows and Linux server environments
  • Experience with Microsoft technologies including Azure, Microsoft 365, Defender, Intune, Active Directory, and Azure AD
  • Hands-on experience with SIEM platforms, incident response, vulnerability management, and endpoint security
  • Strong understanding of firewall technologies, network security, VPNs, and infrastructure hardening
  • Experience securing cloud and hybrid enterprise environments
  • Knowledge of compliance frameworks such as NIST, CJIS, CIS Controls, or similar
  • Strong troubleshooting, analytical, and problem-solving skills
  • Previous leadership, supervisory, or project leadership experience
  • Excellent communication skills with both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Lead enterprise cybersecurity operations across on-premises, hybrid, and cloud environments
  • Monitor and manage security tools including SIEM platforms, endpoint protection, firewalls, and cloud security solutions
  • Lead incident response efforts, conduct investigations, and coordinate remediation activities
  • Oversee vulnerability management, security patching, and risk mitigation initiatives
  • Administer and harden Windows, Linux, cloud, and network environments
  • Manage firewall, VPN, endpoint, identity, and cloud security configurations
  • Develop, maintain, and enforce security policies, standards, and best practices
  • Conduct security audits, penetration testing, risk assessments, and compliance reviews
  • Protect sensitive organizational data through Data Loss Prevention (DLP) and information security controls
  • Collaborate with infrastructure, networking, cloud, and application teams to strengthen enterprise security
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
  • Fulltime
Read More
Arrow Right

Senior Vulnerability Manager

Global Xbox Security is seeking a Senior Vulnerability Management Engineer to he...
Location
Location
United States , Annapolis
Salary
Salary:
102800.00 - 190204.00 USD / Year
activision.com Logo
Activision
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent practical experience
  • Experience in vulnerability management, security operations, detection engineering, systems administration, or a closely related cybersecurity function
  • Strong understanding of vulnerability management principles, including CVSS, exploitability, remediation validation, compensating controls, and risk-based prioritization
  • Experience with enterprise vulnerability scanning or exposure management platforms
  • Familiarity with operating systems, enterprise infrastructure, cloud environments, networking fundamentals, and common security architectures
  • Ability to analyze technical findings and communicate risk, remediation guidance, and prioritization decisions to technical and non-technical stakeholders
  • Demonstrated ability to coordinate across a broad range of teams and communicate credibly in high-visibility or time-sensitive situations
  • Experience using ticketing, workflow, or project management platforms to track remediation and exception handling
  • Strong analytical, organizational, and problem-solving skills
Job Responsibility
Job Responsibility
  • Serve as a primary coordinator for vulnerability findings, risk assessments, and remediation efforts for zero day and actively exploited vulnerabilities
  • Manage high-visibility remediation taskings from central security functions, senior leadership, or strategic stakeholders, ensuring clear ownership, accountability, and follow-through
  • Operate and improve vulnerability management workflows across on-premises, cloud, hybrid, and endpoint environments
  • Perform vulnerability triage, validation, prioritization, and risk-based analysis using exploitability, asset criticality, exposure, compensating controls, and threat context
  • Partner with infrastructure, application, platform, and business teams to coordinate remediation activities and improve time-to-remediate for critical and high-risk findings
  • Translate technical risk into actionable guidance, executive-ready updates, and concise remediation narratives for stakeholders with varying levels of technical expertise
  • Help define and maintain severity, prioritization, remediation, and exception-handling standards, including service level objectives and escalation paths
  • Validate remediation through rescans, targeted testing, or review of supporting evidence, and improve data quality, reporting, and lifecycle tracking
  • Support reporting and metrics for program health, including remediation aging, SLA adherence, exception tracking, recurring exposure trends, and sensitive issue status
  • Identify opportunities to automate vulnerability intake, enrichment, ticketing, prioritization, reporting, and stakeholder notifications
What we offer
What we offer
  • Medical, dental, vision, health savings account or health reimbursement account, healthcare spending accounts, dependent care spending accounts, life and AD&D insurance, disability insurance
  • 401(k) with Company match, tuition reimbursement, charitable donation matching
  • Paid holidays and vacation, paid sick time, floating holidays, compassion and bereavement leaves, parental leave
  • Mental health & wellbeing programs, fitness programs, free and discounted games, and a variety of other voluntary benefit programs like supplemental life & disability, legal service, ID protection, rental insurance, and others
  • Relocation assistance
  • Fulltime
Read More
Arrow Right

Client Information Security Manager (ISM)

The NTT DATA Services Information Security Manager (ISM) oversees and coordinate...
Location
Location
United States , Plano
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of relevant experience
  • Strong knowledge of standards / regulations impacting information security (e.g., NIST, ISO, PCI)
  • Experience with information security internal & external audits, contract compliance, and quality initiatives
  • Significant experience in identifying and utilizing a global risk based management model.
Job Responsibility
Job Responsibility
  • Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
  • Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organization
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Manage and drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
  • Participate and represent IT Security in Delivery/Operational meetings
  • conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performance
  • Fulltime
Read More
Arrow Right

Systems Engineering Senior Specialist-Vulnerability Remediation & Tanium Support

We are currently seeking a Systems Engineering Senior Specialist-Vulnerability R...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • HCL Tanium — Server, Module Server, Zone Proxy, and Client deployment and administration (intermediate to advanced level)
  • Tanium Patch, Deploy, Interact, Inventory, Comply, Connect — module configuration and operations
  • Tanium Client deployment via GPO, SCCM, Intune, and PowerShell scripting
  • Tanium sensor, package, and saved question development
  • Vulnerability Remediation
  • Understanding of CVEs
  • Tanium RBAC — user roles, computer groups, content set management
  • Tanium Relevance Language for custom sensor and targeting development
  • PowerShell and Batch scripting for Tanium automation and client management
  • Tanium Connect integration with SIEM and ITSM platforms
Job Responsibility
Job Responsibility
  • Deploy and configure Tanium Server, Tanium Module Server, Zone Proxies, and Tanium Client across enterprise environments
  • vulnerability remediation using Tanium Comply, Detect, Patch, and custom remediation packages
  • Collaborate with security teams (SOC, Threat Management, GRC) to align remediation with vulnerability SLAs and compliance frameworks
  • Drive security hardening programs across endpoints using custom sensors, packages, and benchmarks
  • Execute Tanium platform deployments following defined architecture standards, deployment runbooks, and organizational guidelines
  • Manage Tanium Client deployment at scale across Windows, Linux, and macOS endpoints using GPO, SCCM, Intune, and script-based methods
  • Configure Tanium Zone Proxies for DMZ and remote site endpoint connectivity and visibility
  • Set up and configure Tanium modules post-deployment including Tanium Patch, Deploy, Interact, Inventory, Comply, and Connect
  • Manage Tanium platform SSL certificates, authentication configurations, and RBAC role assignments during and post-deployment
  • Execute Tanium platform upgrades, module updates, and hotfix deployments following change management procedures
  • Fulltime
Read More
Arrow Right

Cyber Security Manager

As the Security Manager, you will be part of an InfoSec team that manage the del...
Location
Location
United Kingdom
Salary
Salary:
Not provided
necsws.com Logo
NEC Software Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable Experience in an IT role, with a strong understanding of security concepts/fundamentals
  • Proven experience working in an IT security role
  • Strong knowledge of cybersecurity frameworks, standards, and regulations
  • A good understanding of an approach to risk management
  • Experience in writing comprehensive responses to security questionnaires or bids
  • A strong focus on business outcomes
  • Strong and demonstrated team working experience
  • High degree of personal motivation and ability to self-manage
  • Ability to communicate security and technical solutions to non-technical or security resources
  • Comfortable with collaboration, open communication and reaching across a range of functions and teams
Job Responsibility
Job Responsibility
  • Work within the InfoSec team to support the key activities
  • Provide consistent and qualified responses to tenders and assurance questionnaires from customers
  • Produce and maintain security assurance documentation required for accreditation
  • Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices
  • Schedule security testing and create remediation plans from the test reports- seeing remediation through to completion
  • Contribute to process documentation and policy review
  • Conduct security assessments and audits on people, process and technology within NEC
  • Assist in security incident management and vulnerability management
What we offer
What we offer
  • Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost)
  • 25 days paid holiday with the option to buy/sell (FTE)
  • 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost)
  • A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%
  • A selection of flexible benefits to suit your individual needs
  • All colleagues get free access to LinkedIn Learning. Over 15000 courses covering a huge breadth of subjects
  • Fulltime
Read More
Arrow Right

Cyber Security Manager

As the Security Manager, you will be part of an InfoSec team that manage the del...
Location
Location
United Kingdom
Salary
Salary:
Not provided
necsws.com Logo
NEC Software Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable Experience in an IT role, with a strong understanding of security concepts/fundamentals
  • Proven experience working in an IT security role
  • Strong knowledge of cybersecurity frameworks, standards, and regulations
  • A good understanding of an approach to risk management
  • Experience in writing comprehensive responses to security questionnaires or bids
  • A strong focus on business outcomes
  • Strong and demonstrated team working experience
  • High degree of personal motivation and ability to self-manage
  • Ability to communicate security and technical solutions to non-technical or security resources
  • Comfortable with collaboration, open communication and reaching across a range of functions and teams
Job Responsibility
Job Responsibility
  • Provide consistent and qualified responses to tenders and assurance questionnaires from customers
  • Produce and maintain security assurance documentation required for accreditation
  • Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices
  • Schedule security testing and create remediation plans from the test reports
  • Contribute to process documentation and policy review
  • Conduct security assessments and audits on people, process and technology within NEC
  • Assist in security incident management and vulnerability management
What we offer
What we offer
  • Private Medical Cover funded by NEC for Employees
  • 25 days paid holiday with the option to buy/sell
  • 4 x basic salary life assurance cover funded by NEC
  • A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%
  • A selection of flexible benefits to suit your individual needs
  • Fulltime
Read More
Arrow Right

Senior Staff Security Engineer – Vulnerability Management

GEICO is seeking a highly experienced Senior Staff Security Engineer to lead the...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in cybersecurity or security engineering roles
  • Deep expertise with vulnerability management tools, methodologies, and industry standards
  • Hands‑on experience with modern infrastructure, cloud services (AWS/Azure/GCP), container platforms, and operating systems
  • Proficiency with a modern programming language (Python, Go, Java, etc.) and scripting for automation at scale
  • Strong understanding of security architecture, networking, operating systems, identity, and cloud services
  • Proven ability to lead, mentor, and inspire engineers across multiple teams
  • Strong communication skills with the ability to influence senior stakeholders and translate complex risks into actionable guidance
  • Hands-on experience implementing cybersecurity frameworks e.g. NIST CSF
  • Hands-on experience with leading compliance initiatives to meet e.g. PCI, SOX, NYDFS, etc.
  • Bachelor’s degree in computer science, Cyber Security, or equivalent education with relevant work experience
Job Responsibility
Job Responsibility
  • Lead the full vulnerability lifecycle: discovery, validation, risk analysis, prioritization, and remediation measurement
  • Leverage business contextualization, underlying systems, and threat intelligence to perform risk assessment for identifying true risk to drive remediation
  • Build integrations among scanning tools, asset inventory, CMDBs, ticketing, CI/CD, and monitoring pipelines to streamline workflows
  • Evaluate, test, and implement emerging tools and technologies that advance VM automation and intelligence
  • Design automation to reduce manual work, increase accuracy, and accelerate remediation
  • Generate data‑driven insights that help teams understand, prioritize, and resolve vulnerabilities efficiently
  • Collaborate with cloud, infrastructure, DevOps, and product engineering groups to integrate vulnerability management into pipelines and delivery workflows
  • Work closely with risk, compliance, governance, and incident response teams to ensure alignment with organizational and regulatory standards
  • Communicate vulnerability trends, risk implications, and remediation strategies to technical and non‑technical stakeholders
  • Define KPIs, SLAs, dashboards, and reporting models to drive accountability and measurable vulnerability reduction
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Security Development and Test Manager

Join a dynamic team as a Security Development and Test Manager, leading secure s...
Location
Location
United Kingdom , Birmingham; London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in secure software development, testing, or DevSecOps environments
  • 1–3 years of experience in a team lead or managerial capacity
  • Hands-on experience with security testing tools (e.g., Veracode, SonarQube, Burp Suite, etc.)
  • Familiarity with secure coding practices, OWASP Top 10, and threat modelling
  • Experience working in Agile or DevOps-driven environments
  • Strong verbal and written communication skills
  • Relevant security or DevSecOps certifications (e.g., CSSLP, CEH, GWEB) preferred
  • Eligible for SC clearance in the UK
Job Responsibility
Job Responsibility
  • Manage the execution of secure development and testing services across projects and clients
  • Support adherence to SLAs, KPIs, and internal quality standards for security testing
  • Serve as a point of contact for technical escalations and coordinate with senior stakeholders to resolve issues
  • Support client engagements with documentation, test results, and security assessment reports
  • Work with engineering and DevOps teams to embed security tools (e.g., SAST, DAST, SCA) into CI/CD pipelines
  • Help maintain and improve automated security testing workflows
  • Support threat modelling and secure design practices at the project level
  • Participate in security reviews of new features and applications
  • Oversee the planning and execution of security tests, including static and dynamic analysis
  • Ensure appropriate tooling is used and maintained, and testing results are actioned
What we offer
What we offer
  • Tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
Read More
Arrow Right