Vulnerability Management Team Lead

Position Title: Vulnerability Management Team Lead

Location:Bethesda, MD | Hybrid- Not Remote

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer. We design, develop, and manage the successful execution of training programs for government and private sector organizations. Cybervance believes in creating innovative solutions to deliver measured results.

We are seeking a highly skilled Vulnerability Management Team Lead to oversee enterprise-level vulnerability identification, assessment, and remediation activities. The Team Lead will develop and manage a comprehensive vulnerability management program designed to strengthen the organization’s cybersecurity posture and minimize attack surface exposure.

This leadership role requires a hands-on technical professional with strong analytical skills, deep experience in IT operations and cybersecurity, and a proven ability to coordinate multidisciplinary teams in complex, fast-paced environments.

Responsibilities

• Lead and coordinate the activities of the Vulnerability Management Team, ensuring timely and accurate execution of scanning, assessment, and remediation initiatives.
• Develop, implement, and maintain a comprehensive vulnerability management program, including formal policies, procedures, and workflows for vulnerability identification, assessment, prioritization, and mitigation.
• Oversee the use and optimization of vulnerability scanning and assessment tools across enterprise environments to identify security weaknesses in endpoints, infrastructure, and applications.
• Coordinate across teams, including system administrators, network engineers, and cybersecurity analysts, to ensure vulnerabilities are properly tracked, analyzed, and resolved.
• Develop and maintain Standard Operating Procedures (SOPs), performance metrics, and reporting mechanisms aligned with established Service Level Agreements (SLAs) and Key Performance Indicators (KPIs).
• Analyze and communicate vulnerability trends, producing actionable insights and reports that guide continuous improvements in the organization’s vulnerability management strategy and overall security posture.
• Lead and mentor team members, fostering a culture of accountability, technical excellence, and collaboration.
• Ensure timely development and management of Plans of Action and Milestones (POA&Ms) to document remediation efforts and demonstrate progress toward risk reduction.
• Support incident response and continuous monitoring activities, integrating vulnerability data into the broader cybersecurity lifecycle.
• Engage regularly with Federal leadership, Cybersecurity Operations Centers (CSOCs), and compliance offices to coordinate vulnerability management efforts and ensure alignment with organizational goals and federal cybersecurity standards.

Experience

• Proven experience leading or managing vulnerability management or cybersecurity operations teams in enterprise or government environments.
• Demonstrated hands-on experience with vulnerability scanning tools (e.g., Tenable Nessus, Qualys, Rapid7, or equivalent).
• Strong technical background in IT operations with a fundamental understanding of vulnerability management principles, patch management, and system hardening.
• Experience in incident response, POA&M resolution, and continuous monitoring within compliance-driven environments.
• Proven ability to develop and execute vulnerability management strategies, workflows, and remediation plans.
• In-depth knowledge of network security, operating systems, cloud platforms, and endpoint management.
• Familiarity with vulnerability scoring systems (e.g., CVSS), configuration baselines, and secure configuration management.
• Understanding of relevant cybersecurity frameworks and compliance requirements (e.g., NIST RMF, FISMA, FedRAMP).
• Strong leadership and mentoring abilities with experience managing technical personnel.
• Excellent analytical, organizational, and communication skills for coordinating across diverse technical and leadership teams.

Required Skills & Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related discipline (Master’s degree preferred).
• Current government security clearance: Public Trust.

Preferred Qualifications

• Experience managing vulnerability management programs supporting federal agencies or large-scale enterprise environments.
• Familiarity with automation, orchestration, and ticketing integrations for vulnerability remediation.
• Relevant cybersecurity certifications such as Security+, CEH, CISSP, or GCIH.
• Experience working within hybrid on-premises and cloud environments.