Vulnerability Management Director

Our client has a sophisticated infrastructure and technology in its domain. As the Vulnerability Management Director, you will lead and mentor a dedicated team of security professionals while shaping the strategic vision of the vulnerability management program. You will be responsible for developing and executing comprehensive strategies for application/infrastructure vulnerability assessments, DevSecOps initiatives, coordinated penetration testing, and proactive attack surface management. Your

Pinpoint Asia - Hong Kong - Full time

Salary: HK$80k - HK$110k per month + Performance Bonus & Medical, 5 days work


Key Responsibilities

  • Define, implement, and continuously refine the vulnerability management strategy aligned with overall security and business goals.
  • Collaborate with executive leadership and cross-functional teams to integrate vulnerability management into broader risk management strategies.
  • Build, manage, and mentor a high-performing vulnerability management team, fostering an environment of innovation, continuous improvement, and excellence.
  • Provide guidance on career development, technical training, and industry best practices.
  • Oversee the planning and execution of vulnerability assessments for applications and infrastructures using state-of-the-art tools (e.g., Tenable, Qualys).
  • Coordinate with DevSecOps teams to integrate security controls into CI/CD pipelines, ensuring security is embedded from the ground up.
  • Work closely with Red Team and Purple Team counterparts to perform targeted penetration tests and validate defenses.
  • Develop and present comprehensive reports, dashboards, and metrics to communicate risk posture, progress on remediation, and strategic priorities to senior management.
  • Champion continuous improvement initiatives to refine existing security controls and processes.
  • Stay abreast of emerging cybersecurity trends, industry regulations, and new vulnerability threats to proactively adapt strategies.
  • Direct and support the identification, prioritization, and remediation of vulnerabilities within our operational environment.
  • Engage with stakeholders to ensure that identified vulnerabilities are addressed effectively and mitigated on schedule.

Qualifications

  • Bachelors or Masters degree in Computer Science, Information Security, or a related field (or equivalent practical experience).
  • 12+ years of progressive experience in vulnerability management, security operations, or related cybersecurity disciplines with at least 3 years in a leadership or managerial role.
  • Deep understanding of vulnerability assessment tools (e.g., Tenable, Qualys) and familiarity with application security tools such as Coverity, BlackDuck, SonarQube, Fortify, and Snyk.
  • Strong knowledge of DevSecOps practices and the integration of security within CI/CD pipelines.
  • Experience in formulating and executing attack surface management strategies.
  • Proven ability to translate technical details into strategic initiatives.
  • Adept at risk management, data analysis, and presenting actionable insights to C-suite executives.
  • Exceptional leadership skills with a track record of successfully building and managing teams in a fast-paced environment.
  • Excellent interpersonal and communication abilities to foster collaboration across diverse teams and stakeholders.
  • Industry certifications (e.g., CISSP, OSCP, CEH) are strongly preferred.

If this outstanding opportunity sounds like your next career move, please submit through "Apply Now" or send your resume in Word format to Sedrick Chan at resume@pinpointasia.com and put Vulnerability Management Director in the subject header.

Data provided is for recruitment purposes only.
                     _________________________________________________________

Headquartered in Hong Kong, Pinpoint Asia is the go-to Specialist Firm for Technology Recruitment

We are a team of specialist tech recruiters (many of our recruiters come from an IT background) and we serve a wide range of clients, all the way from tech startups (especially FinTech) to some of the top Financial Institutions on Wall Street and several other large scale enterprises in other industries.

Our significant market reputation and status as the leading search firm for many of our clients is a direct result of our strong industry relationships, intimate understanding of the marketplace and proven ability to deliver results. 

Our vision is to help companies hire smarter and help job seekers get closer to their career aspirations.

To see all our open jobs please reach out to us at https://pinpointasia.com/job-search/ (EA License #75905

We are also seeking top-calibre candidates for the following exciting roles:
1) Digital Project Manager - Leading Insurance Group
2) Server Infrastructure Engineer (Financial Institution)
3) Equities Applications Support Associate

22814457
Ad