Manager, Vulnerability Management at Vultr

WHO WE ARE Vultr is on a mission to make high-performance cloud infrastructure easy to use, affordable, and locally accessible for enterprises and AI innovators around the world. With 32 global cloud data center locations, Vultr is trusted by hundreds of thousands of active customers across 185 countries for its flexible, scalable, global Cloud Compute, Cloud GPU, Bare Metal, and Cloud Storage solutions. In December 2024 Vultr announced an equity financing at a $3.5 billion valuation. Founded by David Aninowsky and self-funded for over a decade, Vultr has grown to become the world’s largest privately-held cloud infrastructure company. Vultr Cares - 100% company-paid insurance premiums for employee medical, dental and vision plans. - 401(k) plan that matches 100% up to 4%, with immediate vesting - Professional Development Reimbursement of $2,500 each year - 11 Holidays + Paid Time Off Accrual + Rollover Plan - Commitment matters to Vultr! Increased PTO at 3 year and 10 year anniversary + 1 month paid sabbatical every 5 years + Anniversary Bonus each year - $500 stipend for remote office setup in first year + $400 each following year - Internet reimbursement up to $75 per month - Gym membership reimbursement up to $50 per month - Company paid Wellable subscription Join Vultr Vultr is seeking a Manager of Vulnerability Management to oversee day-to-day operations, owning the infrastructure, processes, and team responsible for identifying, prioritizing, and driving remediation across Vultr’s technology stack. This role balances technical depth with organizational influence, ensuring vulnerability management activities are performed effectively while continuously improving the systems that enable them. The Manager of Vulnerability Management will also be responsible for providing mentorship and direction to the team of analysts responsible for vulnerability management work. The ideal candidate brings deep expertise in vulnerability management program composition and direction. Key Responsibilities - Team Leadership: Manage and mentor a team of skilled analysts, overseeing performance, career development, and daily operational priorities. - Remediation Leadership: Partner with internal stakeholders to drive completion on complex remediation efforts, negotiate priorities and timelines, escalate blocked remediations, and maintain a risk-based approach to remediation prioritization. - Continuous Improvement: Identify opportunities for improvement, benchmark program maturity against industry frameworks, solicit feedback from internal stakeholders to improve remediation procedures, and incorporate lessons learned into policies and procedures. - Audit and Compliance Support: Serve as subject matter expert in internal and external audits, providing remediation evidence and policy attestations, and translate audit findings into actionable remediation plans. - Vulnerability Management Oversight: Serve as the primary vulnerability management authority during security incidents and security operational engagements. Minimum Qualifications - Experience: Minimally 5 years of experience in cybersecurity with 3+ years focused on vulnerability management, preferably within an IaaS CSP or technology provider. - Vulnerability Management: Comprehensive understanding of the vulnerability lifecycle, vulnerability scoring (CVSS, EPSS), remediation procedures and tracking, and common scanning tools (Qualys, Tenable, Rapid7). - Technical Understanding: General understanding of a wide variety of software and technologies, including Linux distros, hypervisors, container orchestration tooling, network hardware and communications, etc. - Compliance Frameworks: An understanding of enterprise security standards such as SOC 2, ISO 27001, NIST 800-53, FedRAMP, and GDPR. - Communication: Ability to translate complex technical security concepts into clear narratives for a variety of technical stakeholders. - Education: Bachelor’s degree or equivalent experience in Computer Science, Cybersecurity, or a related field. - Operational Mindset: Methodical, detail-oriented self-starter capable of managing multiple priorities under pressure in a fast-paced environment. Compensation $105,000 - $130,000 Final compensation will vary depending on years of experience, background/skill set, location, and applicable laws.   INCLUSION & PRIVACY We are an equal opportunity employer and are committed to creating an inclusive environment for all employees. We welcome applications from individuals of all backgrounds and experiences, and we prohibit discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other protected status under applicable laws. Vultr will consider qualified applicants with arrest or conviction records in accordance with applicable laws and will not conduct a background check until after an offer of employment has been extended and accepted. We also take your privacy seriously. We handle personal information responsibly and follow applicable laws, including U.S. privacy rules and India’s Digital Personal Data Protection Act, 2023. Your data is used only for legitimate business purposes and is protected with proper security measures. Where allowed by law, applicants may request details about the data we collect, access or delete their information, withdraw consent for its use, and opt out of nonessential communications. For more details, please see our Privacy Policy [Upgrade to PRO to see link]