Vulnerability Management Lead

Description :

Job Title : Vulnerability Management (VM) Lead

Location : Worli / Thane/ Mumbai

Experience : 8-15 years

Job Summary :

We are looking for a Vulnerability Management Lead to drive the enterprise VM program across business units. This is a governance and risk management role, focused on reducing security risks across infrastructure, cloud, endpoints, and applications.

Key Responsibilities :

- Lead enterprise-wide vulnerability management program

- Define VM strategy, roadmap, and operating model

- Drive risk-based prioritization & remediation

- Manage VAPT, red/purple team exercises

- Ensure scan coverage, tool health & integrations

- Collaborate with SOC & threat intel teams for prioritization

- Track and enforce remediation SLAs & compliance

- Build executive dashboards and reporting

- Govern risk acceptance and exception processes

Required Skills :

- Strong experience in Vulnerability Management / Security Operations

- Knowledge of tools like Qualys, Tenable, Rapid7 (or similar)

- Understanding of CVSS, EPSS, threat intelligence

- Experience with cloud, infra, and application security

- Familiarity with ITSM, CMDB, SIEM integrations

- Strong stakeholder management & communication skills

Good to Have :

- Experience in VAPT / Red Teaming coordination

- Knowledge of ISO, NIST or compliance frameworks

- Exposure to automation & DevSecOps (SAST/DAST, CI/CD)