About the Company

TekRek is partnered with a large enterprise organization investing heavily in the maturity of its cybersecurity and risk management capabilities. With a complex technology environment and a strong focus on operational resilience, the security team is building a more strategic, risk-driven approach to vulnerability management.

The Role This role sits at the center of the vulnerability management program, with ownership spanning strategy, prioritization, reporting, and remediation oversight. You will be the subject matter expert driving the evolution of the program while working closely with technical teams and senior stakeholders to ensure risks are understood, prioritized, and addressed.

What You Will Do Define and execute a long-term vulnerability management roadmap that strengthens security controls and program maturity. Manage vulnerabilities from identification through remediation validation, ensuring issues are fully resolved rather than simply reported. Assess and prioritize findings using threat intelligence and frameworks such as MITRE ATT&CK to align remediation efforts with real-world risk. Build reporting, dashboards, and metrics that provide visibility into remediation performance, compliance targets, and overall program health. Present risk assessments, remediation progress, and recommendations to technical teams, business stakeholders, and executive leadership.

What You Bring 5+ years of experience in vulnerability management, security operations, or security engineering. Strong practical knowledge of MITRE ATT&CK, ISO 27001, and NIST CSF, including their application to risk assessment and control mapping. Hands-on experience administering enterprise vulnerability management platforms such as Tenable, Rapid7, or Qualys. Advanced reporting and analytics skills, including building dashboards and working with large datasets using tools such as Excel, Tableau, or Power BI. A track record of independently driving security initiatives, influencing cross-functional teams, and delivering remediation outcomes across complex environments.

Why This Role This is an opportunity to own and shape a vulnerability management program rather than inherit a purely operational reporting function. You will have direct influence on strategy, risk prioritization, and executive decision-making while helping advance a mature, enterprise-scale cybersecurity program.