Senior Manager - Vulnerability Management

The role is responsible for proactively identifying, exploiting, and validating security weaknesses across the company’s systems, applications, and networks. This includes leading vulnerability assessments, conducting penetration testing, and ensuring effective technical remediation and patch management oversight to reduce organizational risk and strengthen the security posture.

Responsibilities

• Offensive Security & Penetration Testing: Plan, execute, and report on penetration testing engagements across web applications, APIs, infrastructure, and cloud environments. Simulate real-world attack scenarios to identify exploitable vulnerabilities.
• Vulnerability Assessment & Management: Establish and manage continuous vulnerability scanning and assessment processes. Perform authenticated and unauthenticated scans across critical assets. Analyze scan results to identify true positives, eliminate false positives, and validate risk.
• Technical Remediation Coordination: Work closely with IT, DevOps, and engineering teams to drive remediation efforts. Provide clear, actionable, and technically detailed remediation guidance. Validate fixes through re-testing and secure configuration reviews.

Requirements

• A tertiary level qualification from an internationally recognized institution.
• Recommended to have 5 to 7 years of equivalent experience with demonstrated competencies in Network Security & VAPT tools.
• Industry-recognized certifications in OSCP (Offensive Security Certified Professional) or CPENT (Certified Penetration Testing Professional).
• Deep understanding of various operating systems such as Windows, Linux, etc.
• Good analytical skills, problem-solving abilities, and interpersonal skills.

Summary
The role encompasses identifying, exploiting, and validating security weaknesses across the company’s systems, leading vulnerability assessments, conducting penetration testing, and ensuring effective remediation and patch management oversight.