Manager for Total Vulnerability Management (TVM) jobs in United States
cer-icon
Apply on Employer Site
company-logo

DXC Technology · 4 hours ago

Manager for Total Vulnerability Management (TVM)

positionUSA - OH - ANY CITY
timeFull-time
remoteHybrid
senioritySenior Level
money$115K/yr - $214K/yr
date5+ years exp

DXC Technology is a leading global technology services company. The Manager for Total Vulnerability Management (TVM) will lead efforts to identify, assess, prioritize, and remediate security vulnerabilities across data center and cloud environments, while developing a comprehensive vulnerability management strategy that aligns with organizational policies and regulatory requirements.

AnalyticsConsultingInformation TechnologyInsurTechOutsourcingSecuritySoftware Engineering
check
H1B Sponsor Likelynote

Responsibilities

Identifying, assessing, prioritizing, and remediating security vulnerabilities across all data center and cloud hosted environments
Developing and executing a comprehensive vulnerability management strategy that aligns with the organization’s risk appetite, policies, standards, and regulatory requirements
Overseeing the full lifecycle of vulnerability and patch management including asset and vulnerability discovery, patching, mitigation, and remediation prioritization
Metric reporting to executive leadership and responding to internal and external audits
Partnering closely with infrastructure, application, and delivery teams to ensure timely remediation
Driving continuous improvement of processes, tooling, and automation to reduce the organization’s attack surface

Qualification

Vulnerability managementVulnerability scanning toolsCloud environmentsApplication security testingThreat intelligencePatch management processesNetwork security fundamentalsRegulatory frameworksRisk assessmentMetricsKPIsAutomationScriptingNISTMITRE ATT&CKDevSecOps practicesInfrastructure-as-code scanningZero-trust principlesForensicsReverse engineeringSaaS experienceEmerging security trendsTeam managementCommunication skills

Required

Minimum of 5–8 years of professional security experience, with at least 3 years focused on vulnerability management
Hands-on experience with vulnerability scanning tools (e.g., Tenable, Qualys, Rapid7, Wiz, Prisma Cloud)
Strong understanding of cloud environments (AWS, Azure, GCP) and SaaS-specific security concerns
Experience managing vulnerabilities across containers and serverless architectures
Familiarity with application security testing (SAST, DAST, penetration testing coordination)
Proficiency with threat intelligence sources and mapping vulnerabilities to real-world risk
Knowledge of patch management processes and integration with IT/DevOps workflows (CI/CD)
Understanding of network security fundamentals, including firewalls, IDS/IPS, and endpoint security
Proven ability to work with cross-functional teams (engineering, DevOps, compliance, product) to drive remediation
Familiarity with regulatory and compliance frameworks (SOC 2, ISO 27001, HIPAA, GDPR)
Strong background in risk assessment and prioritization, translating technical findings into business impact
Experience in developing and reporting metrics and KPIs for vulnerability management
Familiarity with automation and scripting (Python, PowerShell, Bash) to streamline vulnerability workflows
Knowledge of NIST, MITRE ATT&CK, CVSS scoring, and industry standards for vulnerability classification
Demonstrated ability to manage a team of security professionals
Excellent communication and presentation skills for executive-level reporting

Preferred

CISSP, CISM, CISA, OSCP, or GIAC certifications (e.g., GSEC, GCIH, GMON) demonstrating advanced security expertise
Background in DevSecOps practices and embedding vulnerability management into CI/CD pipelines
Experience with infrastructure-as-code (IaC) scanning (Terraform, CloudFormation)
Familiarity with software composition analysis (SCA) tools for open-source dependency management
Knowledge of zero-trust security principles and modern enterprise architecture security
Exposure to forensics and reverse engineering for advanced vulnerability analysis
Experience working in a SaaS company
Strong knowledge of emerging security trends, such as AI-driven threats and supply chain security

Benefits

Health, dental, and vision insurance coverage
Employee wellness
Life and disability insurance
A retirement savings plan
Paid holidays
Paid time off

Company

DXC Technology

twittertwittertwitter
Glassdoor3.6
company-logo
DXC Technology is an IT and consulting services company that offers insurance software, security, and application development services.
dateFounded in 2017
location
Ashburn, Virginia, USA
people-size10001+ employees
web-link
https://www.dxc.com

H1B Sponsorship

DXC Technology has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (51)
2024 (78)
2023 (175)
2022 (146)
2021 (123)
2020 (183)

Funding

Current Stage
Public Company
Total Funding
$755.01M
2025-12-02Post Ipo Debt· $755.01M
2017-04-03IPO

Leadership Team

leader-logo
Raul Fernandez
President and Chief Executive Officer
linkedin
leader-logo
Kaveri Camire
SVP and Chief Marketing Officer
linkedin

Recent News

Best ERP Software, Vendors, News and Reviews
Top Worktech News From the Week of January 9th: Updates from Syspro, Infosys, SAP, and More
2026-01-11
Benzinga.com
What's Going On With Alpha Modus Shares Wednesday?
2026-01-08
Benzinga.com
What Sparked Alpha Modus' (AMOD) After-Hours Surge?
2026-01-07
Company data provided by crunchbase