Unified Vulnerability Management (UVM) Specialist at Vanguard

Dallas, Texas, United States

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, FinanceIndustries

Requirements

Undergraduate degree in IT or cybersecurity is preferred
3-5 years of experience in vulnerability management
Hands-on experience with unified vulnerability management (UVM) solutions (e.g., ArmorCode, Wiz)
Strong understanding of OWASP Top 10, CVE, CVSS, NVD, and other vulnerability standards
Experience with programming and scripting languages (e.g., Python, PowerShell) is preferred
Familiarity with data engineering solutions (e.g., Athena, Tableau), workload management solutions (e.g., Jira, ServiceNow), version control and pipeline solutions (e.g., Bamboo, GitHub), and IaC solutions (e.g., Terraform, Ansible)
Knowledge of application development, build, and deployment processes (development, IDEs, repositories, branching, pipelines, cloud, containers, serverless, etc.)
Professional certifications such as CISSP, CCSP, or Security+ a plus
Experience with integrating self-hosted and SaaS-based applications via APIs
Expertise utilizing native API integrations and developing custom integrations (via code or scripts)

Responsibilities

Aggregate and normalize vulnerability data from diverse sources into a unified vulnerability platform (UVM)
Collaborate with product owners (Vulnerability Management, DevSecOps, Cloud Security, etc.) to ensure the collection, quality, normalization, and enrichment of vulnerability data
Apply standardized vulnerability severity scoring and customize it to reflect business context and risk appetite
Develop and maintain centralized dashboards to visualize risk posture across applications and environments, including custom dashboards for different stakeholder types (executives, business owners, and resource owners)
Collaborate with Technical Security Advisors and BISOs to maintain and improve risk reporting (visualizations, dashboards, reports, notifications, etc.)
Improve exception workflows through UVM integrations with workload mgmt./ticketing systems
Build and maintain RBAC to the UVM platform (dashboards, reports, etc.)
Define and enforce remediation SLAs and shift-left prevention policies
Support operational workflows for risk acceptance, false positives, and severity overrides
Participate in recurring vulnerability oversight meetings and provide actionable insights
Contribute to the development of vulnerability lifecycle processes and automation strategies
Maintain comprehensive documentation of technology, projects, processes, etc
Stay up to date on security practices and standards; participate in educational opportunities; read professional publications
Participate in special projects and other duties as assigned

Skills

UVM

API Integration

Vulnerability Data Normalization

Dashboards

RBAC

Remediation SLAs

Custom Integrations

Vulnerability Management

Vanguard

Client-owned investment management firm offering low-cost funds

About Vanguard

Vanguard provides financial services with a focus on investment management. The company offers a variety of products, including mutual funds, exchange-traded funds (ETFs), individual retirement accounts (IRAs), and 401k rollovers, aimed at individual investors, financial advisors, and institutions. Vanguard's unique ownership structure means it is owned by its funds, which are in turn owned by the clients, allowing it to prioritize the needs of its investors over external shareholders. This model enables Vanguard to offer low-cost investment options, as it primarily earns revenue through management fees that are generally lower than industry standards. Additionally, Vanguard provides personalized investment advisory services, charging fees based on the assets managed. The company's goal is to help clients grow their wealth and achieve their financial objectives through effective investment strategies, while maintaining a competitive performance track record.

Kline Township, PennsylvaniaHeadquarters

1975Year Founded

SECONDARYCompany Stage

Fintech, Financial ServicesIndustries

10,001+Employees

Benefits

Best-in-class medical, dental & vision coverage

Onsite health clinic & fitness center

Health Smart Rewards program

Vanguard Retirement Savings Plan

Education Benefits

PTO

Family Planning Benefist

Parental leave

Personal development opportunities

Volunteer Time Off

Risks

Competition from AI-driven platforms like Writer challenges Vanguard's traditional advisory services.

Vanguard's stake in Steelcase exposes it to the volatile furniture market.

New active bond ETFs may struggle in a low-yield environment with increasing competition.

Differentiation

Vanguard is client-owned, aligning its interests with investors, unlike traditional firms.

The firm offers low-cost investment products, making it attractive to cost-conscious investors.

Vanguard's ownership structure allows it to focus on long-term investor value.

Upsides

Vanguard's new active bond ETFs offer diversified, low-cost fixed income options.

The acquisition of Steelcase shares diversifies Vanguard's portfolio into the furniture industry.

Launching the International Dividend Growth Fund appeals to investors seeking sustainable dividend growth.

Land your dream remote job 3x faster with AI

Try Jobo Free