Vulnerability Management Specialist (Multiple Headcounts), Global Firm

A leading global firm is looking for Vulnerability Management Specialist (Multiple Headcounts) to champion a newly built capability and drive its strategic vision. In this high-visibility team, you will shape how vulnerability risks are managed across complex technology landscapes, acting as the go-to expert for remediation initiatives, patching governance, and regulatory alignment. This is a rare opportunity to influence enterprise-wide security standards and make a meaningful impact.


Responsibilities

You will conduct both onsite and remote vulnerability scanning, maintain accurate asset inventories, and analyse scan results to highlight critical exposures to senior security leadership. You will prepare consolidated vulnerability compliance reports, manage the configuration and effectiveness of scanning tools, and oversee vendor engagements under a master VAPT contract. The position requires close coordination with system and application teams to plan and review testing activities, as well as collaboration with operational security, red and purple teams, and threat intelligence to connect vulnerabilities with real-world risks. You will also ensure that all activities align with internal security requirements and relevant regulatory standards such as ISO 27001 and CCOP.


Requirements

Ideally you should be degree qualified, with a minimum of 5 years of cybersecurity experience including at least 3 years specialising in vulnerability management. You should demonstrate strong knowledge of vulnerability assessment frameworks and tools such as CVSS, MITRE ATT&CK, and NIST. You should have experience with enterprise vulnerability scanning platforms (Tenable, Qualys etc), with hands-on experience in Patch Management.


To apply

Please submit your resume to Grace Lim at [Confidential Information], quoting the job title. We regret that only successful shortlisted candidates will be notified.

Registration No: R1988923
License No: 16S8060