All jobs

Manager, Vulnerability Management

Vanguard1d ago
United StatesHybridFull-timeManager Level6+ yrs exp

Top focus

Management Consultant

We are seeking an experienced and strategic cybersecurity leader to manage a team responsible for Vulnerability Management across a rapidly evolving hybrid and multi-cloud environment. As the Manager for Vulnerability Management, you will lead a high-performing team to reduce Vanguard’s attack surface through continuous threat exposure management (CTEM), hyper-prioritization, AI-enabled automation, and scalable security guardrails.

You’ll operate at the intersection of security risk, automation, and emerging AI-driven capabilities—driving outcomes that protect Vanguard and its clients while minimizing friction for technology teams. This is a unique opportunity to lead a growing function, optimize vulnerability management practices, and partner across the enterprise to deliver measurable risk reduction.

Core Responsibilities (In this role you will) Drive the evolution of Vulnerability Management program, adopting VulnOps concepts to defend against human & AI-driven threats – while infusing AI into team operations Lead and develop a high-performing Vulnerability Management team that monitors Vanguard onprem & multi-cloud assets for vulnerabilities and security configuration weaknesses.

Provide mentorship, coaching, and professional development to team members. Assess performance and make informed compensation decisions in accordance with HR policies and procedures Partner with the SOC, Cyber Threat Intel, Offensive Security/Red Team, PatchOps, and other stakeholders to refine prioritization, to validate impact of suspected attack paths, to advise owners on mitigation strategies or compensating controls, and to enable remediation outcomes Ensure timely resolution of false-positives investigations, requests for risk-acceptance or risk-rating adjustment of security findings Coordinate implementation of hardening security controls for Operating Systems, databases, and critical telecom infrastructure – ensuring compliance with industry security standards Shape remediation SLAs, build-breaking policies, and other enforcement controls & guardrails Develops metrics, KPIs, and OKRs to measure the effectiveness of the program and team’s operations Coordinate with Engineering platform teams to tune scanning tools to improve visibility and to meet additional security objectives Lead continuous process improvement and ensure the team is identifying opportunities for automation, fusion of disparate sources of security findings, and consistency of remediation owner experience Provide latest industry expertise in emerging security practices and standards What it Takes (Qualifications) Critical thinker with a minimum of 6 years related work experience, including experience in vulnerability management, DevSecOps, cloud security engineering, or general cyber security domains.

At least 2 years of experience managing vulnerabilities at scale Excellent leadership and team management skills, with a track record of building and leading high-performing teams. Solid understanding of CVSS, exploitability, and risk-based prioritization frameworks Experience with AWS, Azure, or GCP – with a good understanding of cloud security principles Understanding of CI/CD pipelines and modern AI-assisted code development Undergraduate degree in a related field or the equivalent combination of training and experience Superb analytical and problem-solving skills, with the ability to assess and mitigate complex security risks Excellent communication and collaboration skills, with the ability to influence stakeholders multiple levels up Ways to stand out: Demonstrated passion for continuous learning Experience with Claude Code/Codex or Threat Modeling Experience leading structured process improvement Experience with Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable, or Qualys Experience with security data aggregators such as Brinqa, Kenna, Vulcan, Wiz UVM, or ArmorCode Experience with risk controls and interacting with internal/external audit Special Factors Sponsorship Vanguard is not offering visa sponsorship for this position.

About Vanguard At Vanguard, we don't just have a mission—we're on a mission. To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team.

From Malvern to Melbourne, our mission drives us forward and inspires us to be our best. How We Work Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection.

We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

Required skills

Vulnerability ManagementDevSecOpscloud securityAWSAzureGCPCI/CDAIPalo Alto PrismaCrowdStrikeTenableQualys
Posted on JobRush — the end-to-end AI job-search platform.