SIGN IN
Threat and Vulnerability Program Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Georgetown University · 12 hours ago

Threat and Vulnerability Program Manager

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$80K/yr - $157K/yr
date10+ years exp
Georgetown University is a prominent institution located in the nation’s capital, offering rigorous academic programs and a commitment to social justice. The Threat and Vulnerability Program Manager will lead and mature the university's cyber threat and vulnerability management program, ensuring the identification and remediation of cyber threats across various infrastructures.
EducationHigher EducationUniversities
check
H1B Sponsor Likelynote

Responsibilities

Lead GU’s program for managing vulnerabilities across on-prem infrastructure, cloud and applications; guiding the process from finding vulnerabilities, to mitigating risk
Manage GU’s vulnerability scanners and MSSP to make sure scans are thorough and results are prioritized by how risky they are; assist and direct the process of resolving vulnerabilities and report on the status; and verify that the actions taken to fix them are working
Analyze Security Findings to evaluate the effectiveness of existing security measures and recommend improvements
Drive vulnerability remediation with asset owners inline with established risk mitigation SLA’s
Incorporate vulnerability risk into the broader GU risk oversight framework, continuously evaluating the risk associated with the state of remediation SLA compliance
Oversee vulnerability scanning activities across the enterprise, including automated, authenticated, and manual assessments
Define and apply risk-based classification standards for vulnerabilities using CVSS and contextual asset/business impact
Maintain dashboards and reporting for vulnerability risk metrics
Establish SLAs for remediation, drive accountability, and verify remediation effectiveness
Integrate vulnerability management into broader risk oversight and UISO governance
Collaborate with DevSecOps, product engineering, and infrastructure teams to embed remediation into operational workflows
Provide briefings on Vulnerability Analyst/Findings
Drives necessary security changes through steering groups and control (review) boards to meet Risk Management milestones
Develops risk mitigation strategies that contribute to the effectiveness, efficiencies, and performance outcomes for strategic projects, program goals, and business processes
Evaluate security solutions and implementation strategies for Program IT systems and services and maintain operational security posture of development, integration, and deployed capabilities
Stay updated to the latest security threats, vulnerabilities and industry best practices to enhance our security framework

Qualification

Cybersecurity experienceVulnerability managementCloud expertiseRisk frameworks knowledgeVulnerability scanning toolsAnalytical skillsCommunication skillsStakeholder engagementInfluencing skillsProject managementProblem-solving skillsDetail-orientedCollaboration skills

Required

10 years of cybersecurity experience, with 3 to 5 years in vulnerability management
Strong expertise across cloud (AWS, Azure, GCP), on-premise, and application environments
Experience with tools such as Tenable, and native cloud scanning technologies
Strong knowledge of risk frameworks (e.g., NIST, ISO, CVSS)
Bachelor's degree in Computer Science, Engineering, Cyber Security, or related experience
Excellent analytical, communication, and stakeholder engagement skills
Bachelor's degree in related field, such as Business, IT, Computer Science or related experience
Knowledge of IP network infrastructure (firewalls, intrusion detection/prevention), access control, data encryption and on-prem and cloud security
Excellent communication skills, including the ability to communicate effectively in English, both written and verbal
Ability to present complex topics in clear, non-technical language
Ability to work collaboratively within team and across business and technology functions
Detail-oriented individual with critical thinking, analytical, and problem-solving skills
Demonstrated ability to be proactive and take ownership of and solve problems
Ability to handle multiple assignments concurrently within an iterative environment
Deep capability in applying risk principles to the business environment. Ability to clearly articulate risk concepts and results to business leaders and navigate collaborative and informed decision making
Can effectively connect with both technical and non-technical staff. Ability to translate sophisticated technical concepts into plain English and present them in a way that decision-makers can understand
Positive influencing skills both verbally and through the preparation of written materials in order to build relationships, influence and negotiate
Strong project management and delegation skills in prioritizing and reprioritizing projects of various size and complexity across multiple functional groups and departments

Preferred

One or more of the following certifications such as: CISSP, CRISC, CISA, CompTIA CySA+
5+ years of prior experience in a related field (media, entertainment, business development or streaming services industry experience a plus)
Familiarity with streaming and similar products/services
Experience working in a national, global company, Federal agency, or a major university
Proficiency in vulnerability scanning tools and understanding of common vulnerabilities

Benefits

Medical
Dental
Vision
Disability and life insurance
Retirement savings
Tuition assistance
Work-life balance benefits
Employee discounts
An array of voluntary insurance options

Company

Georgetown University

twittertwittertwitter
Glassdoor4.0
company-logo
Georgetown University is an academic and research institution.
dateFounded in 1789
location
Washington, District of Columbia, USA
people-size5001-10000 employees
web-link
http://www.georgetown.edu

H1B Sponsorship

Georgetown University has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (120)
2024 (89)
2023 (90)
2022 (77)
2021 (38)
2020 (52)

Funding

Current Stage
Late Stage
Total Funding
$13.74M
Key Investors
"US Department of Commerce, Economic Development Administation"Hyundai Hope On WheelsAndrew W. Mellon Foundation
2023-11-09Grant· $0.75M
2022-09-27Grant· $0.3M
2019-12-18Grant· $1M

Leadership Team

leader-logo
Bryan Alexander
Senior Scholar
linkedin
leader-logo
Deus Bazira
Inaugural Director, Georgetown Global Health Institute
linkedin

Recent News

thefastmode.com
Cisco and Georgetown University Partner to Modernize Campus with Wi-Fi 7
2026-01-22
Pulse 2.0
Georgetown University Collaborates With Cisco For Major Campus Network Upgrade With Wi-Fi 7 Rollout
2026-01-22
Telecompaper
Cisco to supply Georgetown University with Wi-Fi 7 access, security tools, and research-grade networks
2026-01-22
Company data provided by crunchbase