As the Vulnerability Management Lead, you will oversee both the technical aspects of vulnerability detection and prioritisation, as well as the operational side, including stakeholder communication, cross-functional coordination, compliance, and reporting. You will assess vulnerabilities based on exploitability, manage patching schedules, and ensure robust pre- and post-patch validation. This position reports directly to the Head of Security.
Key Responsibilities
- Lead vulnerability scanning, analysis, prioritisation, and remediation, ensuring alignment with security policies and compliance requirements.
- Collaborate with IT, cloud, engineering, business, and security teams to coordinate patching and remediation with minimal business disruption.
- Draft and distribute clear communication regarding upcoming patching activities.
- Oversee patch testing and validation, ensuring patches are properly tested pre-deployment and verified post-deployment using appropriate tools.
- Maintain oversight of the end-to-end vulnerability management process, ensuring timely resolution and ongoing improvements.
Required Skills & Experience
- 5+ years of experience in vulnerability management or a similar security role, including 2+ years in a leadership position.
- Strong technical knowledge and hands-on experience with vulnerability scanning and assessment tools.
- Familiarity with on-premise, cloud (AWS, Azure), and hybrid environments.
- Ability to communicate effectively with both technical and non-technical stakeholders.
- Proven experience in coordinating patch management across a large organisation and multiple time zones while minimising business disruption.
- Ability to assess vulnerabilities based on risk and exploitability, providing strategic guidance on patching priorities.
- Strong organisational and coordination skills to manage patching schedules, stakeholder engagement, and compliance requirements.
