Contract

Victoria, Melbourne

IT

Security

AU$1000 - AU$1100 per day

Chelsey Costello

chelsey@talenza.com.au

16-06-2026

BBBH21586

Exclusive with Talenza.

An exciting opportunity exists for an experienced Vulnerability Manager to lead and mature enterprise vulnerability management capabilities within a large, complex, and highly regulated environment.

This role is ideal for a hands-on cyber security professional who can combine technical expertise with strong stakeholder engagement to drive measurable risk reduction across enterprise IT and cloud environments.

You'll own the end-to-end vulnerability management lifecycle, embedding a risk-based and intelligence-led approach to remediation while aligning with frameworks including Essential Eight, ISO 27001, and critical infrastructure obligations.

Key Responsibilities

• Lead enterprise vulnerability management strategy, execution, and continuous improvement
• Optimise and enhance vulnerability tooling including Qualys, CrowdStrike, and Microsoft Defender
• Drive remediation programs and patch governance aligned to ASD Essential Eight Maturity Level 2+
• Define risk-based remediation workflows and prioritisation models
• Establish remediation SLAs and drive accountability across technical teams
• Partner with infrastructure, cloud, and application teams to reduce cyber risk
• Develop executive reporting, dashboards, and vulnerability risk metrics
• Integrate vulnerability management into DevOps and operational processes
• Support audit and compliance activities across cyber security frameworks and regulatory obligations
• Leverage threat intelligence to prioritise emerging vulnerabilities and exposures

What Success Looks Like

• Reduction in aged critical vulnerabilities
• Improved patch compliance and remediation outcomes
• Mature governance and reporting frameworks embedded across the organisation
• Automated vulnerability reporting and executive visibility established
• Enhanced risk-based decision making across security and technology teams

About You

You are a hands-on cyber security professional with deep vulnerability management experience and the ability to influence stakeholders across technical and business functions.

• 8+ years' experience in cyber security, with strong vulnerability management expertise
• Hands-on experience with Qualys, CrowdStrike, and Microsoft Defender
• Strong knowledge of ASD Essential Eight and practical implementation of maturity uplift initiatives
• Experience operating in regulated, critical infrastructure, or defence-aligned environments
• Proven capability producing executive and governance reporting
• Strong stakeholder engagement and communication skills
• Relevant certifications such as CISSP, CEH, or Security+ are highly regarded

If you're passionate about reducing cyber risk and driving meaningful security outcomes in complex environments, we'd love to hear from you.