Vulnerability & Asset Management Program

Overview

Designed and implemented a comprehensive vulnerability management program for infrastructure supporting SaaS platforms. Integrated asset discovery via Axonius with vulnerability scanning from Nessus, Qualys, and Burp Suite Enterprise, along with other native cloud security tools. Automated reporting and remediation workflows with engineering and operations teams to track patching needs and risk prioritization.

Role

Director and lead architect coordinating security, engineering, and operations teams.

Impact

Reduced open vulnerabilities from over 30,000 to fewer than 300 within 6 months, improved remediation efficiency, and established a sustainable vulnerability management lifecycle that supports rapid SaaS growth and customer assurance.

Technologies, Frameworks, and Artifacts

• Nessus and Qualys
• Burp Suite Enterprise
• Axonius asset inventory
• AWS, GCP, Azure native tools
• Jira-driven remediation workflows