Vulnerability Management Analyst

Location Singapore
Discipline Information & Communications Technology
Job Reference BBBH113198_1650875063
Salary S$7500 - S$13000 per month
Consultant Name Cristina Malabuyoc Malijan
Consultant Email
Consultant Contact No. 62328835
EA License No. 02C3423
Consultant Registration No. R1111547

Job Scope:

  • Guide the Vulnerability Management (VM) Plan, to coordinate, monitor and support activities in the areas of the VM program, security patch and remediation management.
  • Provide inputs, help prepare and update VM roadmap, develop, maintain, and publish project plans and operation schedules
  • Provide status reports to CISO and IS Manager related to VM metrics, key risk indicators, trending, and compliance reports to the CISO, IS Manager, and other management
  • Propose VM concepts/solutions, prepare presentations, and coordinate vendor demonstrations
  • Create and maintain SOPs for the VM program, provide technical knowledge to operations and production support teams
  • Maintain configuration control of VM hardware, systems, and application software, Coordinate upgrades and other maintenance activities on VM tools
  • Analyze assessment results and threat feeds to properly react to security weaknesses or vulnerabilities
  • Prepare and maintain technical documentation of VM program including requirements, architecture designs, network topology, applications and application security designs
  • Facilitate and coordinate vulnerability assessment and scanning, reviews of assessment results, patching, and remediation activities related to workstations, servers, storage, databases, appliances, web applications and network devices
  • Collaborate on Information Security policies, standards, and baselines and contribute efforts to measure compliance
  • Collaborate and provide VM results and metrics for consistent reporting for governance purposes; collaborate and coordinate remediation plans and activities
  • Help develop a long term VM strategy (3-5 years) that will address global information security needs (current state, gaps and opportunities)


  • Bachelor's degree in Computer Science or equivalent
  • Around 5+ years' experience in a vulnerability management role
  • With 5+ years' experience working knowledge of Information Security best practices, policies, standards, and baselines, including industry standards and guidelines from ISO 27001/27002, NIST, CIS, and OWASP
  • With 5+ years' technical working experience/knowledge of operating systems, databases, web applications, mobile devices, middleware, and other computing devices/software components
  • Certified Information Systems Security Professional (CISSP)
  • Good to have Systems Security Certified Practitioner (SSCP) Certification
  • Good to have one or more hyperscaler certifications: Azure, AWS, Google, etc.

Cristina Malabuyoc Malijan EA License No. 02C3423 Personnel Registration No. R1111547

Please note that your response to this advertisement and communications with us pursuant to this advertisement will constitute informed consent to the collection, use and/or disclosure of personal data by ManpowerGroup Singapore for the purpose of carrying out its business, in compliance with the relevant provisions of the Personal Data Protection Act 2012. To learn more about ManpowerGroup's Global Privacy Policy, please visit