Key Facts

Remote From:

Indiana (USA)

Full time

English

Hard Skills

Other Skills

•
Communication
•
Leadership
•
Analytical Skills
•
Training And Development

Roles & Responsibilities

Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience).
5+ years of experience in information security, with at least 2 years dedicated to vulnerability management.
Proficiency with industry-standard vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) and remediation tracking platforms, including configuring, scheduling, and interpreting scan results.
Experience applying security frameworks and standards such as NIST Cybersecurity Framework, ISO/IEC 27001, CIS Controls, and PCI DSS, and maintaining controls to meet regulatory requirements.

Requirements:

Lead the design, implementation, and continuous improvement of the enterprise vulnerability management program.
Oversee vulnerability scanning, assessment, and reporting processes for all critical assets.
Collaborate with IT, DevOps, and application teams to prioritize and track remediation efforts.
Develop and deliver metrics, dashboards, and executive reports on vulnerability status and risk trends.

Businessolver

About Businessolver

Founded by HR professionals, Businessolver delivers market-changing benefits administration technology supported by an intrinsic and unwavering responsiveness to client needs. You can trust Businessolver to take care of you and your employees with a configurable and secure SaaS platform and a culture of service, all aimed at total and measurable success and your complete delight. We'll help you maximize the investment in your benefits program, minimize your exposure to risk, engage your employees with our easy-to-use solution and full suite of communication vehicles, and empower them to use their benefits wisely and control their costs and yours. Founded in 1998, Businessolver is headquartered in West Des Moines, IA. Visit us at www.Businessolver.com Learn how Businessolver rose to meet the challenges of 2020 while embracing opportunities to deliver delight like never before in the 2020 Annual Snapshot: https://info.businessolver.com/2020-snapshot

Company type: Large

Industry:

Founded: 2018

Company size: 1001 - 5000

Website LinkedIn See all jobs →

Job description

Since 1998, Businessolver has delivered market-changing benefits technology and services supported by an intrinsic responsiveness to client needs. The company creates client programs that maximize benefits program investment, minimize risk exposure, and engage employees with easy-to-use solutions and communication tools to assist them in making wise and cost-efficient benefits selections. Founded by HR professionals, Businessolver's unwavering service-oriented culture and secure SaaS platform provide measurable success in its mission to provide complete client delight.

At Businessolver you have opportunities for individual development through our common language: Respond Readily. Trust through transparency. Assume positive intent. Be real. Live a growth attitude. Embrace the reverse golden rule.

The Vulnerability Program Manager is responsible for developing, implementing, and managing the organization’s vulnerability management program. This role ensures timely identification, assessment, prioritization, and remediation of security vulnerabilities across enterprise systems, applications, and infrastructure. The position collaborates with cross-functional teams to drive continuous improvement in the organization’s security posture and compliance with regulatory requirements.

The Gig:

Lead the design, implementation, and continuous improvement of the enterprise vulnerability management program.
Oversee vulnerability scanning, assessment, and reporting processes for all critical assets.
Collaborate with IT, DevOps, and application teams to prioritize and track remediation efforts.
Develop and deliver metrics, dashboards, and executive reports on vulnerability status and risk trends.
Ensure compliance with internal policies, industry standards, and regulatory requirements related to vulnerability management.
Coordinate vulnerability disclosure and response activities, including communication with external vendors and stakeholders.
Provide guidance, training, and awareness to technical teams on vulnerability management best practices.
Performs other duties as assigned.
Comply with all policies and standards.

Qualifications:

Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience).
5+ years of experience in information security, with at least 2 years dedicated to vulnerability management.
Proficiency with industry-standard vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) and remediation tracking platforms. Must be able to configure, schedule, and interpret scan results, and oversee the lifecycle of vulnerability remediation.
Demonstrated expertise in applying security frameworks and industry standards such as NIST Cybersecurity Framework, ISO/IEC 27001, CIS Controls, and PCI DSS. Experience implementing and maintaining controls in accordance with regulatory requirements and industry benchmarks.
Familiarity with vulnerability management best practices, including risk prioritization, patch management processes, threat intelligence integration, and continuous improvement methodologies. Ability to design and refine processes for vulnerability identification, assessment, and mitigation across enterprise environments.
Relevant certifications preferred, such as CISSP, CISM, OSCP, GIAC, or equivalent credentials that validate proficiency in security practices and vulnerability management.
Excellent communication, analytical, and project management skills. Proven ability to clearly articulate technical risk and remediation strategies to both technical and non-technical audiences, including executives and cross-functional teams.
- Experience collaborating with cross-functional teams (e.g., IT, DevOps, Application Development, Compliance, and Legal) to ensure coordinated vulnerability management efforts. Ability to lead meetings, drive consensus, and facilitate information sharing to maintain compliance with internal and external requirements.
- Demonstrated responsibility for monitoring, maintaining, and reporting on vulnerability management metrics and compliance status. Must proactively engage stakeholders to ensure ongoing adherence to organizational policies, standards, and regulatory obligations.

Leadership Responsibilities:

Indirect reports: As required for cross-functional initiatives
May manage contractors, consultants, or vendor representatives

Leadership responsibilities may include:

Interview prospective employees
Train employees
Assign work and guide employees

The pay range for this position is $92K to $144K per year (pay to be determined by the applicant’s education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data).

This role is eligible to participate in the annual bonus incentive plan.

Interested? Great, we look forward to reviewing your application.

Other Compensation: If this position is full-time or part-time benefit eligible, you will receive a comprehensive benefits package which can be viewed here: https://businessolver.foleon.com/bsc/job-board-businessolver-virtual-benefits-guide/

Dear Applicant.

At Businessolver, we take our responsibility to protect our clients, employees, and company seriously and that begins with the hiring process.

Our approach is thoughtful and thorough. We’ve built a multi-layered screening process designed to identify top talent and ensure the integrity of every hire. This includes quickly filtering out individuals who may attempt to misrepresent themselves or act in bad faith.

We also partner with trusted, best-in-class providers to conduct background checks, verify identities, and confirm references. These steps aren’t just about compliance, they’re about ensuring fairness, safety, and trust for everyone involved.

Put simply: we will always confirm that you are who you say you are. It's just one of the many ways we uphold the standards that matter most, to you, to us, and to the people we serve.

With heart,
The Businessolver Recruiting Team

Businessolver is committed to maintaining an environment that protects client data. We train our employees to maintain leading class security practices and expect all employees to adhere to policy, procedures and controls.

(Applicable to all roles at an AVP, DIR, VP, Head Of or SVP and above level):

Serve as a security contact for the business unit. Responsible for driving adoption and compliance with information security and privacy practices. Serve as a liaison with the information security team on security and privacy matters.

Equal Opportunity at Businessolver:

Businessolver is an Affirmative Action and Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

#LI-Remote

Ready to apply?

APPLY

Share ·