About Bell Cyber
Bell Cyber is North America’s premier Next Generation Managed Security Services Provider, delivering an integrated Security-as-a-Service offering based on Gartner’s Cybersecurity Mesh Architecture. Our innovative platform provides 24x7x365 threat detection, response, and management capabilities, powered by our state-of-the-art Cyber Intelligence Centre.
We’re passionate about protecting our clients while pushing the boundaries of modern cybersecurity. Join us and be a part of something truly transformational.
Position Summary
We are seeking a highly motivated Vulnerability Management Specialist to join our team. In this role, you will be responsible for identifying, assessing, prioritizing, and reporting on vulnerabilities across customer environments. You will work closely with internal security analysts, threat intelligence teams, and client stakeholders to improve the overall security posture through proactive vulnerability lifecycle management.
Salary: $90,000 to $120,000 (depending on skills and experience)
Key Responsibilities
- Lead end-to-end vulnerability management activities across client infrastructures (network, systems, endpoints, applications, cloud).
- Perform regular vulnerability scans using industry-standard tools (e.g., Tenable, Qualys, Rapid7) and assess risk levels based on CVSS and business context.
- Correlate findings with threat intelligence and asset criticality to prioritize remediation efforts.
- Develop, document, and maintain scanning schedules, processes, and reporting mechanisms.
- Collaborate with internal teams and clients to recommend remediation strategies and track mitigation progress.
- Generate clear, actionable vulnerability reports and dashboards for both technical and executive audiences.
- Stay current on emerging vulnerabilities, zero-day threats, and exploit trends.
- Support incident response efforts when vulnerabilities are associated with active threats.
Qualifications
- 3+ years of experience in cybersecurity, with a strong focus on vulnerability assessment and management.
- Solid understanding of networking, operating systems (Windows/Linux), and cloud environments (e.g., Azure, AWS).
- Hands-on experience with vulnerability scanning tools such as Tenable.sc, Nessus, Qualys, or Rapid7 InsightVM.
- Knowledge of CVSS, MITRE ATT&CK, CWE, and other relevant frameworks and standards.
- Familiarity with patch management and secure configuration practices.
- Strong analytical, communication, and report-writing skills.
- Relevant certifications such as CompTIA Security+, CEH, CISSP, OSCP, or GIAC are a plus.
