Vulnerability Management Specialist
Core Specialty Insurance Holdings, Inc.Cincinnati, Ohio, United States • Dallas, Texas, United States
Posted March 27, 2026
Full Time
About the Company
At Core Specialty, you will receive a competitive salary and opportunities for professional development and advancement.
Job Description
The Vulnerability Management Specialist is a hands-on individual contributor responsible for executing Core Specialty’s vulnerability management program across endpoints, servers, cloud resources, and applications. This role focuses on continuous vulnerability scanning, risk analysis, remediation coordination, and reporting, working closely with IT, Infrastructure, Endpoint, and Threat teams.
Requirements
- Conduct continuous vulnerability scanning across enterprise assets using Qualys and related tools.
- Analyze scan results to validate findings, remove false positives, and assess exploitability.
- Prioritize vulnerabilities using CVSS, Qualys Detection Score (QDS), asset criticality, and business impact.
- Enforce remediation SLAs aligned to severity levels: Critical: 7 days, High: 30 days, Medium: 60 days, Low: 180 days.
- Partner with Infrastructure, EUC, Cloud, and Application teams to drive timely remediation.
- Support remediation activities using Qualys, Intune, JAMF, PolicyPak, and Microsoft Defender.
- Ensure vulnerability management activities aligned with NIST, CIS Controls, ISO 27001, and insurance regulatory expectations.
- Partner with Threat Intelligence and SOC teams to assess vulnerability exposure related to active threats.
- Develop scripts (PowerShell) and workflows to support remediation, reporting, and validation.
Benefits
- Medical, dental, vision, and life insurances
- Short and long-term disability
- A Company-match of 100% of a 6% contribution 401(k) plan
- An Employee Assistance Plan
- Health Savings Account
- Flexible Spending Account
- Health Reimbursement Account
- A wellness program
