Required EducationBachelor's degreeRequired Qualifications / Skills / ExperienceStrong experience with vulnerability management platforms such as Qualys, Wiz, or similar toolsExperience with vulnerability lifecycle governance and remediation managementExperience managing and enforcing SLA adherence for vulnerability remediation programsKnowledge of risk acceptance processes and vulnerability governance frameworksExperience validating, normalizing, enriching, and aggregating security data across multiple platformsExperience building executive reporting and dashboards focused on risk reduction, backlog trends, and SLA performanceStrong analytical and data-driven decision-making skillsExperience with automation tools and scripting languages such as PowerShell and PythonExperience integrating security data with ServiceNow, JupiterOne, CMDB, and enterprise data pipelinesExperience working with cross-functional teams including Cybersecurity, Infrastructure, Cloud, and Data organizationsStrong written and verbal communication skillsExperience driving operational improvements and reducing vulnerability backlogsPreferred Qualifications / Skills / ExperienceExperience preparing and structuring datasets for analytics and AI use casesExperience using Tableau or similar reporting and visualization platformsExperience supporting enterprise governance, risk, and compliance initiativesExperience working within cloud and hybrid enterprise environmentsKnowledge of AI-enabled security operations and advanced analytics capabilitiesVulnerability Governance & Reporting Analyst OverviewThe Vulnerability Governance & Reporting Analyst plays a key role in strengthening enterprise governance processes designed to reduce vulnerability and configuration-related risk across the organizationThis position focuses on improving vulnerability lifecycle governance, remediation accountability, reporting transparency, and operational effectivenessThe analyst serves as a bridge between vulnerability management operations, governance teams, cybersecurity stakeholders, and emerging AI initiativesResponsibilities include improving data quality, reducing remediation backlogs, enforcing SLA compliance, and ensuring vulnerability and configuration data is structured for advanced analytics and AI-driven capabilitiesThe role supports enterprise efforts to transition from reactive vulnerability management practices to proactive, intelligence-driven, and scalable security operationsSuccess in this position requires strong governance leadership, operational execution, data analytics expertise, executive communication skills, and the ability to influence cross-functional stakeholdersThe analyst will collaborate closely with Cybersecurity, Infrastructure, Cloud, Data, and Engineering teams to drive remediation efforts, improve reporting accuracy, and strengthen the organization's overall security postureThis position is highly focused on governance, reporting, data quality, risk reduction, and continuous improvement initiatives that enable long-term operational maturity and AI readinessJob Duties Establish and support vulnerability governance frameworks and remediation accountability processesMonitor and manage vulnerability remediation SLAs and risk acceptance workflowsAnalyze vulnerability and configuration data to identify trends, gaps, and remediation opportunitiesImprove data quality through normalization, enrichment, validation, and aggregation activitiesPrepare and structure security datasets to support analytics and AI-driven use casesDevelop executive dashboards and reporting focused on risk reduction, backlog trends, remediation progress, and SLA performancePartner with Cybersecurity, Infrastructure, Cloud, and Data teams to improve vulnerability management processesDrive reduction of vulnerability and configuration backlogs through prioritization and stakeholder engagementSupport integration of vulnerability data into ServiceNow, JupiterOne, CMDB, reporting platforms, and enterprise data pipelinesProvide leadership-ready reporting and actionable insights to support risk-informed decision makingPromote operational improvements and governance best practices across the enterpriseSupport AI-readiness initiatives by ensuring security data is structured, actionable, and scalableSpecific Details to Call Attention ToStrong hands-on experience with Qualys, Wiz, or similar vulnerability management platforms is requiredMust have experience managing vulnerability lifecycle governance, remediation workflows, and SLA adherenceExperience reducing large-scale vulnerability backlogs through governance and operational improvements is highly preferredCandidates should have strong reporting, dashboard development, and executive communication experienceStrong cross-functional collaboration skills are required to drive remediation and governance activities across multiple teams **Only those lawfully authorized to work in the designated country associated with the position will be considered.** Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify).