[Hiring] Vulnerability Program Manager @Businessolver

Role Description

The Vulnerability Program Manager is responsible for developing, implementing, and managing the organization’s vulnerability management program. This role ensures timely identification, assessment, prioritization, and remediation of security vulnerabilities across enterprise systems, applications, and infrastructure. The position collaborates with cross-functional teams to drive continuous improvement in the organization’s security posture and compliance with regulatory requirements.

• Lead the design, implementation, and continuous improvement of the enterprise vulnerability management program.
• Oversee vulnerability scanning, assessment, and reporting processes for all critical assets.
• Collaborate with IT, DevOps, and application teams to prioritize and track remediation efforts.
• Develop and deliver metrics, dashboards, and executive reports on vulnerability status and risk trends.
• Ensure compliance with internal policies, industry standards, and regulatory requirements related to vulnerability management.
• Coordinate vulnerability disclosure and response activities, including communication with external vendors and stakeholders.
• Provide guidance, training, and awareness to technical teams on vulnerability management best practices.
• Perform other duties as assigned.
• Comply with all policies and standards.

Qualifications

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience).
• 5+ years of experience in information security, with at least 2 years dedicated to vulnerability management.
• Proficiency with industry-standard vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) and remediation tracking platforms.
• Demonstrated expertise in applying security frameworks and industry standards such as NIST Cybersecurity Framework, ISO/IEC 27001, CIS Controls, and PCI DSS.
• Familiarity with vulnerability management best practices, including risk prioritization, patch management processes, threat intelligence integration, and continuous improvement methodologies.
• Relevant certifications preferred, such as CISSP, CISM, OSCP, GIAC, or equivalent credentials.
• Excellent communication, analytical, and project management skills.
• Experience collaborating with cross-functional teams (e.g., IT, DevOps, Application Development, Compliance, and Legal).
• Demonstrated responsibility for monitoring, maintaining, and reporting on vulnerability management metrics and compliance status.

Requirements

• Indirect reports: As required for cross-functional initiatives.
• May manage contractors, consultants, or vendor representatives.
• Leadership responsibilities may include:
• Interview prospective employees.
• Train employees.
• Assign work and guide employees.

Benefits

• The pay range for this position is $92K to $144K per year.
• This role is eligible to participate in the annual bonus incentive plan.
• If this position is full-time or part-time benefit eligible, you will receive a comprehensive benefits package.

Company Description

Businessolver is committed to maintaining an environment that protects client data. We train our employees to maintain leading class security practices and expect all employees to adhere to policy, procedures and controls.

Businessolver is an Affirmative Action and Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more.