Hiring.Camp

Manager, Vulnerability Management

Vanguard

·

2 days ago

Location
Malvern, PA, United States of America · North Carolina · Dallas/Ft. Worth, TX
Workplace
Hybrid
Type
Full-time
Department
Management
Seniority
Manager
Experience
2+ years
Education
Bachelor
Visa
Not sponsored
Closing date
Today
Source
Workday

Description

We are seeking an experienced and strategic cybersecurity leader to manage a team responsible for Vulnerability Management across a rapidly evolving hybrid and multi-cloud environment.

As the Manager for Vulnerability Management, you will lead a high-performing team to reduce Vanguard’s attack surface through continuous threat exposure management (CTEM), hyper-prioritization, AI-enabled automation, and scalable security guardrails.

You’ll operate at the intersection of security risk, automation, and emerging AI-driven capabilities—driving outcomes that protect Vanguard and its clients while minimizing friction for technology teams.

This is a unique opportunity to lead a growing function, optimize vulnerability management practices, and partner across the enterprise to deliver measurable risk reduction.

Core Responsibilities (In this role you will)

  • Drive the evolution of Vulnerability Management program, adopting VulnOps concepts to defend against human & AI-driven threats – while infusing AI into team operations
  • Lead and develop a high-performing Vulnerability Management team that monitors Vanguard onprem & multi-cloud assets for vulnerabilities and security configuration weaknesses.  Provide mentorship, coaching, and professional development to team members. Assess performance and make informed compensation decisions in accordance with HR policies and procedures
  • Partner with the SOC, Cyber Threat Intel, Offensive Security/Red Team, PatchOps, and other stakeholders to refine prioritization, to validate impact of suspected attack paths, to advise owners on mitigation strategies or compensating controls, and to enable remediation outcomes
  • Ensure timely resolution of false-positives investigations, requests for risk-acceptance or risk-rating adjustment of security findings
  • Coordinate implementation of hardening security controls for Operating Systems, databases, and critical telecom infrastructure – ensuring compliance with industry security standards
  • Shape remediation SLAs, build-breaking policies, and other enforcement controls & guardrails
  • Develops metrics, KPIs, and OKRs to measure the effectiveness of the program and team’s operations
  • Coordinate with Engineering platform teams to tune scanning tools to improve visibility and to meet additional security objectives
  • Lead continuous process improvement and ensure the team is identifying opportunities for automation, fusion of disparate sources of security findings, and consistency of remediation owner experience
  • Provide latest industry expertise in emerging security practices and standards

What it Takes (Qualifications)

  • Critical thinker with a minimum of 6 years related work experience, including experience in vulnerability management, DevSecOps, cloud security engineering, or general cyber security domains. At least 2 years of experience managing vulnerabilities at scale
  • Excellent leadership and team management skills, with a track record of building and leading high-performing teams.
  • Solid understanding of CVSS, exploitability, and risk-based prioritization frameworks
  • Experience with AWS, Azure, or GCP – with a good understanding of cloud security principles
  • Understanding of CI/CD pipelines and modern AI-assisted code development
  • Undergraduate degree in a related field or the equivalent combination of training and experience
  • Superb analytical and problem-solving skills, with the ability to assess and mitigate complex security risks
  • Excellent communication and collaboration skills, with the ability to influence stakeholders multiple levels up

Ways to stand out:

  • Demonstrated passion for continuous learning
  • Experience with Claude Code/Codex or Threat Modeling
  • Experience leading structured process improvement
  • Experience with Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable, or Qualys
  • Experience with security data aggregators such as Brinqa, Kenna, Vulcan, Wiz UVM, or ArmorCode
  • Experience with risk controls and interacting with internal/external audit

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

Skills

AWSAzureGCPCI/CDCybersecuritySOCCompliance

Similar Jobs

30

Manager, Vulnerability Management

Vanguard · Malvern, PA, United States of America +2 · Hybrid

2 days ago

Manager, Vulnerability Management

Pfizer · GRC - Thessaloniki, Chortiatis, Greece · Hybrid

2 weeks ago

Manager, Vulnerability Management

Pfizer · GRC - Thessaloniki, Chortiatis, Greece · Hybrid

2 weeks ago

Vulnerability Management Manager

Consolidated Edison · New York, NY, United States, US

1 month ago

Manager, Vulnerability Management

Vultr · Remote - United States · Remote

2 months ago

Vulnerability Management, Manager

iHeart Media · San Antonio, TX (Stone Oak), United States of America +4 · Hybrid

3 months ago

Vulnerability Management Manager

Ion · London · Onsite

1+ year ago

Manager, Vulnerability Management and Application Security

Pseg · Bethpage, New York, US · Remote, Hybrid, Onsite

1 week ago

Assistant Manager, Vulnerability Management

AirAsia Berhad · Kuala Lumpur - RedQ, Malaysia

2 weeks ago

Senior Manager, Vulnerability Management and Application Security

CarMax disrupted the auto industry · 8901 - Corp Office West Crk, United States of America

1 month ago

IT Operations Manager – Vulnerability Management (Endpoint Technology)

Usbank · Cincinnati, OH, United States of America +10

2 months ago

Engineering Manager - Vulnerability Management

1Password · Remote (United States | Canada) · Remote

3 months ago

Cybersecurity Project Manager (Vulnerability Management)

"Five Rivers IT, Inc." · Juno Beach, FL · Onsite

4 months ago

Manager, Enterprise Vulnerability Management

Hyland · , US

2 months ago

Manager, Threat & Vulnerability Management

Prudential · PSA | Kuala Lumpur - Menara Prudential @ TRX 15F, Malaysia

2 months ago

Cybersecurity Threat & Vulnerability Management | Senior Manager | Cyber Security | Technology Consulting

Pwc · Dublin - One Spencer Dock, Ireland +1

7 months ago

Vulnerability Management Senior Manager

Globe · NCR - WGC, Philippines

7 months ago

Vulnerability & Patch Management (Associate) Manager

SIA · Brussels, Belgium · Hybrid

4 days ago

Vulnerability & Patch Management (Associate) Manager

SIA · Luxembourg, Luxembourg, Luxembourg · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Amsterdam, Netherlands · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Brussels, Belgium · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Amsterdam, Netherlands · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Luxembourg, Luxembourg, Luxembourg · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Brussels, Belgium · Hybrid

2 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Brussels, Belgium · Hybrid

3 weeks ago

Vulnerability & Patch Management (Associate) Manager

SIA · Luxembourg, Luxembourg, Luxembourg · Hybrid

1 month ago

Vulnerability & Patch Management (Associate) Manager

SIA · Amsterdam, Netherlands · Hybrid

1 month ago

Vulnerability & Patch Management (Associate) Manager

SIA · Brussels, Belgium · Hybrid

1 month ago

Cyber Security Manager, Service Delivery and Vulnerability Management

Dyson · India - Bangalore IT Capability Centre

1 week ago

Security Manager with focus on Vulnerability Management (m/f/d)

Hitachi · Ditzingen, Germany · Hybrid

1 month ago