Specialist Cybersecurity Vulnerability Management

Responsibilities

• Independently oversee and coordinate the end-to-end vulnerability management lifecycle, including identification, analysis, prioritization, and reporting to key stakeholders and executives.
• Drive risk-based vulnerability prioritization by integrating asset criticality, threat intelligence, and business context to focus remediation efforts on the highest-impact exposures across the organization's external attack surface, IT, and OT/ICS environments.
• Develop and maintain executive-level dashboards and reporting to communicate vulnerability risk posture, remediation progress, and program KPIs to senior leadership.
• Lead stakeholder meetings across IT and OT/ICS domains to provide recommendations and oversight on remediation strategies aligned with operational and business requirements.
• Extend vulnerability management practices across cloud, hybrid, and containerized environments, ensuring consistent identification and remediation of exposures across the full technology landscape.
• Build, improve, and maintain automation workflows that support vulnerability management operations, while proactively identifying and delivering new automation opportunities to enhance program efficiency, accuracy, and scalability.
• Provide guidance, direction, and oversight to managed service providers and other team members to ensure consistent, high-quality execution of vulnerability management operations.
• Drive continuous improvement across the department's technology stack, processes, and standard operating procedures by evaluating configurations, identifying enhancements, and ensuring thorough documentation.
• Leverage AI and advanced analytics to enhance vulnerability identification, prioritization, and remediation workflows, including identifying patterns, reducing false positives, and improving risk-based decision making.

Requirements

• Required:
• Degree/diploma in Information Systems, Information Security, Engineering, or equivalent work experience.
• Minimum 6+ years of directly related work experience.
• Experience with Vulnerability Management technologies (i.e. - Tenable, Qualys, Rapid7).
• Solid understanding of the fundamentals of vulnerability management.
• Experience in security operations, networking, deployment and data analytics.
• Excellent analytical, problem solving, technical writing, verbal communication, and interpersonal skills.
• Excellent communication skills with the ability to interact with global teams and facilitate meaningful conversations in a group setting.
• Ability to work with a high level of independence.
• Preferred:
• 10 or more years of related experience in IT roles, with a focus on security operations, networking, etc.
• IT security certifications (GCIH, CCSP, CISSP, SSCP, etc).
• SOAR, Power BI, APIs, Python, technology integration, or other similar automation experience and tools.
• Physical Requirements:
• Mental Requirements:
• For Ontario, Canada only:
• Base pay ranges from Minimum 100,000 CAD to Maximum 125,000 CAD based on experience, skills and capabilities.

Benefits

Additional Information

Posting End Date: June 14, 2026 Employee Type: Regular-Full time Union/Non: This is a non-union position The Vulnerability Management Specialist is responsible for independently leading the identification, analysis, validation, and dissemination of vulnerabilities across the enterprise to enable timely remediation and reduce business risk, while working in a fast paced and high-pressure environment. This role provides Tier 3 technical expertise and will take ownership of continuous improvement through the implementation of new technologies, expanded scan coverage, and automation to mature the Vulnerability Management program and stay ahead of evolving cyber threats. We offer opportunities for growth, a competitive benefits and pension plan, and generous time off. Apply today! #joinourteam

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Enbridge? Share your experience