Manager, Vulnerability Management

The Constant Company, LLC

Job Overview

Location

Remote - United States

Job Type

Full-time

Full Job Description

📋 Description

• Lead and mentor a team of vulnerability management analysts, providing guidance on daily operations, performance evaluation, and career development within the vulnerability management function.
• Own the end-to-end vulnerability management program across Vultr’s technology stack, including Cloud Compute, Cloud GPU, Bare Metal, and Cloud Storage environments.
• Drive remediation of identified vulnerabilities by collaborating with engineering, operations, and infrastructure teams to negotiate timelines, prioritize risks, and escalate stalled remediation efforts.
• Maintain a risk-based approach to vulnerability prioritization using industry-standard scoring systems including CVSS and EPSS to ensure optimal resource allocation and impact reduction.
• Benchmark the maturity of Vultr’s vulnerability management program against recognized frameworks such as NIST 800-53, ISO 27001, and SOC 2 to identify gaps and opportunities for enhancement.
• Serve as the primary point of contact during security incidents and security operational engagements, providing real-time vulnerability intelligence and remediation guidance.
• Support internal and external audits by preparing compliance evidence, generating policy attestations, and translating audit findings into actionable, trackable remediation plans.
• Continuously improve vulnerability management processes by soliciting feedback from technical stakeholders, documenting lessons learned, and integrating improvements into team policies and procedures.
• Oversee the use of industry-leading vulnerability scanning tools including Qualys, Tenable, and Rapid7 to ensure accurate identification, classification, and tracking of vulnerabilities across diverse environments.
• Maintain broad technical understanding of Vultr’s infrastructure, including Linux distributions, hypervisors, container orchestration systems, network hardware, and communications protocols to effectively assess and contextualize vulnerabilities.
• Translate complex technical security findings into clear, actionable narratives for both technical and non-technical stakeholders across departments.
• Ensure alignment of vulnerability management activities with enterprise compliance requirements including FedRAMP, GDPR, and other applicable regulatory standards.
• Act as the central authority for vulnerability management policy, procedure, and execution within the organization, ensuring consistency and scalability across global infrastructure.
• Partner with security, compliance, and engineering leadership to embed vulnerability management as a core component of Vultr’s secure-by-design culture.
• Monitor and report on key vulnerability management metrics including mean time to remediate, vulnerability dwell time, and coverage rates to inform leadership decisions.

🎯 Requirements

• Minimum 5 years of experience in cybersecurity with 3+ years focused specifically on vulnerability management, preferably within an IaaS cloud service provider or technology provider
• Comprehensive understanding of the vulnerability lifecycle, including scanning, scoring (CVSS, EPSS), tracking, and remediation workflows using tools like Qualys, Tenable, and Rapid7
• Technical understanding of Linux distros, hypervisors, container orchestration, network hardware, and communications technologies
• Knowledge of enterprise security compliance frameworks including SOC 2, ISO 27001, NIST 800-53, FedRAMP, and GDPR
• Proven ability to translate complex technical security concepts into clear communication for diverse technical and non-technical audiences
• Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience

🏖️ Benefits

• 100% company-paid medical, dental, and vision insurance premiums
• 401(k) plan with 100% match up to 4%, with immediate vesting
• $2,500 annual professional development reimbursement
• 11 paid holidays + paid time off accrual with rollover
• Increased PTO at 3-year and 10-year anniversaries + 1-month paid sabbatical every 5 years + annual anniversary bonus
• $500 remote office setup stipend in first year + $400 annually thereafter
• Internet reimbursement up to $75 per month
• Gym membership reimbursement up to $50 per month
• Company-paid Wellable subscription

Skills & Technologies

Linux

Remote

$105k-130k

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AI Job Fit Analysis

Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

The Constant Company, LLC

Visit Website

About The Constant Company, LLC

The Constant Company, LLC operates the Vultr cloud infrastructure brand, providing on-demand compute, storage, bare-metal, and managed Kubernetes services from 32 global data centers. Founded in 2014, the company targets developers, SaaS businesses, and enterprises with hourly billing, API-driven provisioning, and standardized hardware. Services include virtual machines, block storage, load balancers, object storage, managed databases, and cloud GPUs, all accessible through a unified control panel and REST API. Vultr emphasizes price-performance, global reach, and rapid deployment for web applications, CI/CD workflows, and edge workloads without long-term contracts.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.