Senior Manager, Vulnerability Management | Remote US


Full Time Senior-level / Expert USD 94K - 163K
Coalfire logo


Coalfire is the cybersecurity advisor that combines extensive cloud expertise, technology, and innovative approaches to help clients develop scalable programs that improve their security posture and fuel their continued success.

View all employer listings

Apply now Apply later

About CoalfireCoalfire is on a mission to make the world a safer place by solving our clients’ toughest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world. But that’s not who we are – that’s just what we do. We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.  And we’re growing fast. We’re looking for a Senior Manager, Managed Services Vulnerability Management to support our Managed Services team.
Position SummaryAs a Senior Manager, Managed Services Vulnerability Management at Coalfire within our Managed Services group, you will be a team leader, passionate about cloud security, and thrive on problem solving. You will provide leadership and operational support of Vulnerability Management processes for clients with regulatory compliance requirements.  The Managed Services Vulnerability Management team is responsible for delivering continuous monitoring services, which include identifying, assessing, and managing threats, vulnerabilities, and associated risks to client's information assets and resources. You will work within major public clouds and best-of-breed tools, utilizing your technical abilities to monitor vulnerabilities and recommend remediation or resolution.

What You'll Do

  • Lead a highly collaborative vulnerability management operations team delivering continuous monitoring services for FedRAMP, and PCI ASV scanning services.
  • Communicate alerts to team members and clients related to security anomalies in the environment.
  • Apply technical writing skills to create formal documentation such as analytical reports and briefings.
  • Conduct testing and data reviews to evaluate the effectiveness of current security and operational measures
  • Conduct System Health Checks on managed technologies and provide recommendations on performance improvements.
  • Aiding customer-initiated requests such as setting up scanning services, troubleshooting, and dispute resolution.
  • Create and maintain standard operating procedures, training documents, technical documents, and troubleshooting guidelines of security solutions.
  • Configure and troubleshoot scanning devices.
  • Develop technical solutions to automate repeatable tasks.
  • Provide overall guidance, instruction, and thought leadership to clients.
  • Opening and following up on tickets and customer requests.
  • Utilize tools and analytical skills to investigate the root cause of issues across the technologies.
  • Ensure that the client Service Level Agreements (SLAs) are met.
  • Work with Clients and Vulnerability Management Engineers to identify and raise awareness of impacting bugs and/or issues and drive the appropriate prioritization for fixes and/or responses.
  • Provide oversight and orchestrate key parties from Coalfire and client teams during escalations with a focus on expedited resolution.
  • Serve as the accountable party to provide client with an exceptional experience and assist clients with highly technical and customer-focused service.
  • Responsible for measuring and driving operational excellence as well as benefits realization via key performance indicators (KPIs)
  • Responsible for driving initiatives regarding improvements to existing tools & processes and providing feedback on new practices & procedures.
  • Influence the creation and maturity of automation to create delivery efficiencies.
  • Ensure that team members providing operational support understand client business drivers and strategies, architectures, cloud adoption roadmaps, and operating models.
  • Own all facets of performance and career management for the team, providing mentorship, goal and project management, quality assurance, training, and day-to-day oversight.
  • Participate in defining, planning, and documenting key Managed Services projects and initiatives, and track the progress of initiative outcomes against goals.
  • Support the process of hiring and development of personnel to both fit current needs and allow scalability with client growth.

What You'll Bring

  • Previous experience supporting clients from within a managed services organization
  • Experience with ITSM solutions such as Jira and ServiceNow and delivering to SLAs
  • Exampled relationship management and ability to work with C-Suite
  • Excellent communication, organizational, and problem-solving skills in a dynamic environment
  • Effective documentation skills, to include technical diagrams and written descriptions
  • Ability to work independently and as part of a team with professional attitude and demeanor
  • Critical thinking, and ability to balance security requirements with mission needs
  • 5+ years working with vulnerability management tools and data
  • 3+ years managing technical teams of 6-10 individuals
  • Experience developing playbooks, runbooks, troubleshoot technical issues, and recognize and identify patterns
  • Effective documentation skills, to include technical diagrams and written descriptions
  • Ability to work independently and as part of a team with professional attitude and demeanor
  • Critical thinking, and ability to balance environmental requirements with mission needs
  • BS or above in related Information Technology field or equivalent combination of education and experience
  • US Citizen able to be cleared for work with US Government agencies.

Bonus Points

  • Previous experience supporting a 24x7x365 security operations for a SaaS vendor
  • PCI ASV, CISSP, CISA certifications.
  • Certifications in Cloud Vendors, as well with organizations such as PMP, CISSP, CISM, or CISA
  • Familiarity with frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, HITRUST, PCI, etc.
Why You’ll Want to Join UsAt Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office. Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like flexible time off, certification and training reimbursement, and comprehensive insurance options. At Coalfire, equal opportunity and pay equity is integral to the way we do business. A reasonable estimate of the compensation range for this role is $94,000 to $163000 based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.#LI-Remote#LI-JB1

Tags: Automation C CISA CISM CISSP Cloud Compliance FedRAMP FISMA HIPAA HITRUST Jira Monitoring PCI SaaS Vulnerabilities Vulnerability management

Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Health care Salary bonus Startup environment Team events

Region: Remote/Anywhere
Job stats:  9  2  0
Category: Leadership Jobs
  • Share this job via
  • or

Other jobs like this

Explore more Cyber Security career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cybersecurity in general, filtered by job title or popular skill, toolset and products used.