Exposure & Vulnerability Management Lead

Title: Security Engineer, Exposure & Vulnerability Management Lead, Cybersecurity Operations
Type: Contract, 12 Months | Potential to convert
Location: Hybrid in Cleveland, Ohio preferred - remote with travel option
Eligibility: Due to Federal Regulated work, US Citizenship is required for this role

PURPOSE:

Wright Technical Services is proud to represent a highly respected Fortune 500 global manufacturer for this role. We are seeking a highly capable and execution-focused cybersecurity professional to lead their enterprise Exposure and Vulnerability Management program. This role is responsible for driving measurable risk reduction across identity, endpoint, network, and server environments, with a strong emphasis on operational execution and cross-team coordination.

As the Exposure & Vulnerability Management Lead, you will own the vulnerability lifecycle end-to-end, ensuring vulnerabilities are not only identified, but prioritized, assigned, remediated, and validated in a timely manner. This role plays a critical part in strengthening the organization’s security posture and supporting broader security hardening and Agentic AI (Mythos) preparedness initiatives.

This position is best suited for a hands-on leader who thrives in complex enterprise environments, can navigate competing priorities, and is effective at driving action across infrastructure, desktop, and network teams. The successful candidate will balance technical depth with strong operational discipline, enabling scalable processes, improving asset visibility, and delivering consistent risk reduction outcomes across the enterprise.

BASIC REQUIREMENTS

• Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field preferred.
• 5+ years of experience in cybersecurity with direct ownership or leadership of a vulnerability or exposure management program in an enterprise environment.
• Background in manufacturing or distributed enterprise environments.
• Demonstrated success driving measurable reduction in vulnerability exposure and improving remediation performance at scale.
• Strong understanding of vulnerability management and threat context, including integration of threat intelligence into prioritization.
• Hands-on experience with vulnerability management platforms such as Rapid7, Tenable, Qualys, or similar solutions.
• Experience integrating vulnerability data with CMDB, asset inventory systems, and security telemetry sources.
• Strong technical foundation across enterprise IT, including servers (Windows/Linux), endpoints, networking, and identity systems.
• Familiarity applying security frameworks such as NIST CSF, NIST 800-53, or ISO 27001.
• Experienced with automation and scripting for operational efficiency (e.g., PowerShell, Python).
• Ability to drive execution and accountability across multiple teams without direct authority.
• Strong written and verbal communication skills, with the ability to translate technical issues into business risk language.
• Comfortable working in a hybrid, cross-functional, and matrixed team environment.
• Demonstrates flexibility and responsiveness to changing priorities and critical security needs.
• Experience supporting large-scale security hardening initiatives across infrastructure domains
• Relevant certifications preferred (e.g., GIAC, CISSP, CCNA, CCNP, CompTIA Security+) 

JOB DESCRIPTION (DUTIES AND RESPONSIBILITIES)

• Own and operate the end-to-end vulnerability and exposure management lifecycle, including intake, enrichment, prioritization, assignment, tracking, validation, and closure.
• Establish and execute a risk-based prioritization model that incorporates exploitability, active threats, exposure, and business criticality rather than relying solely on CVSS scoring.
• Drive remediation outcomes by partnering closely with IT teams (server, endpoint, network, identity), ensuring accountability and timely resolution of identified vulnerabilities.
• Act as the central coordination point for vulnerability remediation, proactively identifying and removing blockers to accelerate closure of high-risk exposures.
• Support enterprise-wide security hardening efforts and Mythos (Agentic AI) preparedness initiatives by reducing the organization’s attack surface across key technology layers.
• Operate, configure, and optimize vulnerability management platforms, with a strong preference for Rapid7 InsightVM or comparable tools.
• Integrate vulnerability data with enterprise systems, including CMDB, endpoint telemetry, identity platforms, and external attack surface management (EASM) solutions to improve asset context and prioritization accuracy.
• Develop, track, and report on key performance metrics, including vulnerability backlog, SLA adherence, time-to-remediation, and risk reduction trends.
• Translate technical vulnerability data into clear, actionable insights for both technical teams and leadership stakeholders.
• Design and implement scalable processes and workflows to improve program efficiency and consistency.
• Integrate vulnerability management processes with ITSM/ticketing systems to enable automated assignments, tracking, and reporting.
• Automate repetitive tasks through scripting (e.g., PowerShell, Python) to improve operational efficiency and data accuracy.
• Partner with infrastructure, security, and application teams to continuously improve remediation processes and reduce friction.
• Stay current on vulnerability trends, exploit activity, and emerging threats to continuously refine prioritization and response strategies.
• Perform other cybersecurity-related duties and responsibilities as assigned, based on organizational priorities.