Job Summary

Build and run organization-wide Vulnerability Management and Remediation Program, including governance frameworks with KPIs, SLAs, exception handling and risk acceptance workflows

• Configure, administer and optimize Qualys VMDR platform across large-scale, complex enterprise environments

• Discover in-scope assets including Windows, Unix, Network, Storage systems and Web-applications and ensure complete scan coverage

• Perform external, internal and Web-application vulnerability scans; automate, categorize and prioritize scan results by risk level

• Analyze scan data and generate executive reports, detailed reports and analysis reports for technical and non-technical stakeholders

• Build and maintain BI dashboards and visualizations (Power BI, Tableau, Grafana) to communicate vulnerability metrics and provide data-driven insights

• Engage remediation teams, provide scan results, track remediation efforts and work to eliminate false positives and false negatives

• Design and optimize process workflows, exception handling procedures and remediation tracking mechanisms to improve operational efficiency

• Monitor VM infra health, build new scanners, upgrade VM infrastructure and coordinate with Qualys vendor for platform issues and roadmap alignment

• Prepare and maintain VM process documentation, SOPs and incorporate Authentication, Authorization and Auditing capabilities as applicable

• Ensure VM program aligns with regulatory and compliance frameworks (e.g., ISO 27001, NIST, PCI-DSS, SOC 2)

• Self-driven, creative problem solver with agile mindset, strong stakeholder management and ability to think at Process and Workflow level 

Key Responsibilities

Build and run organization-wide Vulnerability Management and Remediation Program, including governance frameworks with KPIs, SLAs, exception handling and risk acceptance workflows • Configure, administer and optimize Qualys VMDR platform across large-scale, complex enterprise environments

Skill Requirements

Vulnerability Management, Qualys SME, QQL, Qualys VMDR

Other Requirements

VM program aligns with regulatory and compliance frameworks, Certification- Qualys Certified Specialist or Qualys Certified VMDR Master