Vulnerability Management Director

Our client has a sophisticated infrastructure and technology in its domain. As the Vulnerability Management Director, you will lead and mentor a dedicated team of security professionals while shaping the strategic vision of the vulnerability management program. You will be responsible for developing and executing comprehensive strategies for application/infrastructure vulnerability assessments, DevSecOps initiatives, coordinated penetration testing, and proactive attack surface management. Your leadership will ensure that a security posture not only meets but exceeds industry standards.

Key Responsibilities

• Define, implement, and continuously refine the vulnerability management strategy aligned with overall security and business goals.

• Collaborate with executive leadership and cross-functional teams to integrate vulnerability management into broader risk management strategies.

• Build, manage, and mentor a high-performing vulnerability management team, fostering an environment of innovation, continuous improvement, and excellence.

• Provide guidance on career development, technical training, and industry best practices.

• Oversee the planning and execution of vulnerability assessments for applications and infrastructures using state-of-the-art tools (e.g., Tenable, Qualys).

• Coordinate with DevSecOps teams to integrate security controls into CI/CD pipelines, ensuring security is embedded from the ground up.

• Work closely with Red Team and Purple Team counterparts to perform targeted penetration tests and validate defenses.

• Develop and present comprehensive reports, dashboards, and metrics to communicate risk posture, progress on remediation, and strategic priorities to senior management.

• Champion continuous improvement initiatives to refine existing security controls and processes.

• Stay abreast of emerging cybersecurity trends, industry regulations, and new vulnerability threats to proactively adapt strategies.

• Direct and support the identification, prioritization, and remediation of vulnerabilities within our operational environment.

• Engage with stakeholders to ensure that identified vulnerabilities are addressed effectively and mitigated on schedule.

Qualifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

• 12+ years of progressive experience in vulnerability management, security operations, or related cybersecurity disciplines with at least 3 years in a leadership or managerial role.

• Deep understanding of vulnerability assessment tools (e.g., Tenable, Qualys) and familiarity with application security tools such as Coverity, BlackDuck, SonarQube, Fortify, and Snyk.

• Strong knowledge of DevSecOps practices and the integration of security within CI/CD pipelines.

• Experience in formulating and executing attack surface management strategies.

• Proven ability to translate technical details into strategic initiatives.

• Adept at risk management, data analysis, and presenting actionable insights to C-suite executives.

• Exceptional leadership skills with a track record of successfully building and managing teams in a fast-paced environment.

• Excellent interpersonal and communication abilities to foster collaboration across diverse teams and stakeholders.

• Industry certifications (e.g., CISSP, OSCP, CEH) are strongly preferred.

If this outstanding opportunity sounds like your next career move, please submit through "Apply Now" or send your resume in Word format to Sedrick Chan at resume@pinpointasia.com and put Vulnerability Management Director in the subject header.

Data provided is for recruitment purposes only.