Endpoint Vulnerability Management Subject-Matter Expert / Technical Team Lead

Position Title: Endpoint Vulnerability Management Subject-Matter Expert / Technical Team Lead

Location: Bethesda, MD | Hybrid- Not Remote

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer. We design, develop, and manage the successful execution of training programs for government and private sector organizations. Cybervance believes in creating innovative solutions to deliver measured results.

We are seeking a highly skilled and experienced Endpoint Vulnerability Management Subject-Matter Expert (SME) / Technical Team Lead to support enterprise-level cybersecurity operations and lead endpoint vulnerability management efforts across hybrid environments. The SME will be responsible for developing, implementing, and optimizing endpoint vulnerability management processes, tools, and strategies to ensure comprehensive protection and compliance across diverse platforms and business systems.

The ideal candidate will demonstrate technical mastery of endpoint security tools, vulnerability scanning and analysis, and content development for SIEM integration, coupled with deep experience securing complex, multi-platform environments across on-premises, cloud, and operational technology infrastructures.

Responsibilities

• Lead enterprise-wide endpoint vulnerability management operations, ensuring effective detection, analysis, and remediation of endpoint vulnerabilities across multiple operating environments.
• Operate and optimize endpoint vulnerability assessment tools, performing both agent-based and network-based scanning to identify and assess vulnerabilities.
• Analyze and interpret scan results, producing actionable intelligence and recommendations for remediation and risk reduction.
• Develop and integrate vulnerability management use cases into Security Information and Event Management (SIEM) platforms to enhance security visibility and automated response capabilities.
• Design and produce manual and automated reports, dashboards, and alerts for tracking vulnerability trends, remediation progress, systemic issues, and regulatory compliance.
• Collaborate with system owners, administrators, and engineering teams to ensure vulnerabilities are properly prioritized, assigned, and remediate in accordance with organizational policies and federal cybersecurity directives.
• Support compliance and audit efforts by maintaining documentation, metrics, and evidence related to vulnerability management operations.
• Serve as the technical lead and subject-matter expert for endpoint vulnerability processes, providing mentorship and training to team members.
• Stay current on emerging threats, tools, and technologies to continuously improve vulnerability management capabilities and methodologies.

Experience

• Demonstrated experience operating endpoint vulnerability assessment tools, conducting agent- and network-based scans, and analyzing and interpreting results.
• Proven experience in SIEM integration of vulnerability management use cases, including alerting, correlation, and automation.
• Expertise in content development (manual and automated reporting, dashboards, alerts) for vulnerability analysis, remediation tracking, and compliance reporting.
• Hands-on experience securing:
• Cloud IaaS and containerized environments
• Mobile platforms
• Database platforms
• Windows and macOS operating systems
• Linux and Unix operating systems, including Red Hat Enterprise Linux, Oracle Enterprise Linux, and Solaris
• Federal business systems supporting financial, budget, procurement, travel, property, HR/payroll, and data warehousing functions
• Clinical and/or scientific instrumentation systems
• Operational Technology (OT) security experience preferred.
• Deep understanding of endpoint protection, vulnerability lifecycle management, and enterprise patching processes.
• Experience with vulnerability management tools such as Tenable, Qualys, Rapid7, or equivalent.
• Familiarity with compliance requirements (e.g., NIST RMF, FISMA, FedRAMP) and federal cybersecurity mandates.
• Demonstrated leadership and team coordination experience in cybersecurity or IT operations environments.
• Strong analytical, problem-solving, and communication skills, with the ability to translate technical findings into actionable business insights.
• Proven ability to work collaboratively with technical teams, compliance stakeholders, and leadership to drive security outcomes.

Required Skills & Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (master’s degree preferred).
• Current government security clearance: Public Trust.

Preferred Qualifications

• Professional certifications such as CISSP, Security+, CEH, or GCIH.
• Experience with automated vulnerability management orchestration and integration into DevSecOps pipelines.
• Prior experience leading cybersecurity operations within federal or large-scale enterprise environments.