Specialist Cybersecurity Vulnerability Management

Posting End Date:

Employee Type:

The Vulnerability Management Specialist is responsible for independently leading the identification, analysis, validation, and dissemination of vulnerabilities across the enterprise to enable timely remediation and reduce business risk, while working in a fast paced and high-pressure environment. This role provides Tier 3 technical expertise and will take ownership of continuous improvement through the implementation of new technologies, expanded scan coverage, and automation to mature the Vulnerability Management program and stay ahead of evolving cyber threats.

We offer opportunities for growth, a competitive benefits and pension plan, and generous time off. Apply today! #joinourteam

What You Will Do:

• Independently oversee and coordinate the end-to-end vulnerability management lifecycle, including identification, analysis, prioritization, and reporting to key stakeholders and executives.

• Drive risk-based vulnerability prioritization by integrating asset criticality, threat intelligence, and business context to focus remediation efforts on the highest-impact exposures across the organization’s external attack surface, IT, and OT/ICS environments.

• Develop and maintain executive-level dashboards and reporting to communicate vulnerability risk posture, remediation progress, and program KPIs to senior leadership.

• Lead stakeholder meetings across IT and OT/ICS domains to provide recommendations and oversight on remediation strategies aligned with operational and business requirements.

• Extend vulnerability management practices across cloud, hybrid, and containerized environments, ensuring consistent identification and remediation of exposures across the full technology landscape.

• Build, improve, and maintain automation workflows that support vulnerability management operations, while proactively identifying and delivering new automation opportunities to enhance program efficiency, accuracy, and scalability.

• Provide guidance, direction, and oversight to managed service providers and other team members to ensure consistent, high-quality execution of vulnerability management operations.

• Drive continuous improvement across the department's technology stack, processes, and standard operating procedures by evaluating configurations, identifying enhancements, and ensuring thorough documentation.

• Leverage AI and advanced analytics to enhance vulnerability identification, prioritization, and remediation workflows, including identifying patterns, reducing false positives, and improving risk-based decision making.

Who You Are:

Required:

• Degree/diploma in Information Systems, Information Security, Engineering, or equivalent work experience.

• Minimum 6+ years of directly related work experience.

• Experience with Vulnerability Management technologies (i.e. – Tenable, Qualys, Rapid7).

• Solid understanding of the fundamentals of vulnerability management.

• Experience in security operations, networking, deployment and data analytics.

• Excellent analytical, problem solving, technical writing, verbal communication, and interpersonal skills.

• Excellent communication skills with the ability to interact with global teams and facilitate meaningful conversations in a group setting.

• Ability to work with a high level of independence.

Preferred:

• 10 or more years of related experience in IT roles, with a focus on security operations, networking, etc.

• IT security certifications (GCIH, CCSP, CISSP, SSCP, etc).

• SOAR, Power BI, APIs, Python, technology integration, or other similar automation experience and tools.

Physical Requirements:

Include but not limited to: Grasping, kneeling, light – moderate lifting (objects up to 20 pounds), reaching above shoulder, repetitive motion, typing, sitting, standing, visual requirement (able to see screens, detect color coding, read fine print), hearing requirement and the ability to sit at a computer for long periods of time.

Mental Requirements:

Include but not limited to: Ability to: understand, remember and apply oral and/or written instructions or other information, understand complex problems and collaborate/explore alternative solutions, organize thoughts and ideas into understandable terminology, organize and prioritize work schedule on a short-term basis, make decisions which have moderate impact on the immediate work unit and monitor impact outside this area, understand and follow basic instructions and guidelines, complete routine forms, compose letters, outlines, memoranda and basic reports and communicate with individuals via telephone.

For Ontario, Canada only:

Base pay ranges from Minimum 100,000 CAD to Maximum 125,000 CAD based on experience, skills and capabilities.

Benefits:

• A flexible benefits program that allows each employee to select the level of coverage needed for their family in the areas of health, dental, insurance and disability

• A paid maternity and parental leave benefit that offers up to 20 weeks of paid leave for birth-giving parents and up to 12 weeks for other eligible parents, providing flexibility and support during this important life event

• Valuable retirement savings plans, including a savings plan with company stock as an investment option

• Paid time off/vacation/sick, plus paid personal days off (depending on location), and paid holidays

• An Employee and Family Assistance Program

• A Wellness Program, which focuses on supporting healthier employees by providing tools, resources, and opportunities to improve physical, mental, social, and financial well-being

• Enbridge’s FlexWork (hybrid work model) offers eligible employees (Manager and below) the option to work from home on Wednesdays and Fridays, opt for a compressed workweek schedule, and have flexible start and end times. Role requirements determine your eligibility for each option.

At Enbridge, we are dedicated to our core value of Inclusion. We are proud to be an Equal Opportunity Employer. We are committed to providing employment opportunities to all qualified individuals, without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, marital status, family status, veteran status, Indigenous status, disability, or any other reason protected by federal, state, or local law. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting [email protected].

Information For Applicants:

• Applications can be submitted via our online recruiting system only.

• We appreciate your interest in working with us; however, only those applicants selected for interviews will be contacted.

• Final candidates for this position may be required to undergo a security screening, including a criminal records check.

To learn more about us, visit www.enbridge.com