Manager Vulnerability Management

Position: Manager, Vulnerability Management

Company: SATS

Contract Type: (Not specified) Working Hours Function: Aviation

Location: SATS Inflight Catering Centre 1, 20 Airport Boulevard, Singapore 819659

Headquartered in Singapore, SATS Ltd. is one of the world’s largest providers of air cargo handling services and Asia’s leading airline caterer. SATS Gateway Services provides airfreight and ground handling services including passenger services, ramp and baggage handling, aviation security services, aircraft cleaning and aviation laundry. SATS Food Solutions serves airlines and institutions and operates central kitchens with large-scale food production and distribution capabilities for a wide range of cuisines.

SATS is present in the Asia-Pacific, the Americas, Europe, the Middle East and Africa, powering an interconnected world of trade, travel and taste. Following the acquisition of Worldwide Flight Services (WFS) in 2023, the combined SATS and WFS network operates over 215 stations in 27 countries. These cover trade routes responsible for more than 50% of global air cargo volume. SATS has been listed on the Singapore Exchange since May 2000. For more information, please visit www.sats.com.sg.

At SATS, people are our greatest asset, and we build our success on the knowledge, expertise and performance of every contributor, by embracing diversity and uniqueness. As part of our holistic approach and commitment to embracing FAM (Fulfilling, Appreciated, Meaningful) in the workplace, we offer the runway to develop Fulfilling careers that foster your career growth, recognising and Appreciating the strength of talent and capabilities that we continue to build internally; and inspiring and encouraging each other to make Meaningful contributions in the work we do at SATS.

This role reports to the Regional Head, Cybersecurity (APAC), involved in leading vulnerability assessments, risk evaluation and remediation planning. The successful candidate will translate vulnerability results into actionable remediation steps, which will evolve to an enterprise-wide program to ensure comprehensive coverage, consistent processes and building resilience across all business units. The scope involves reviewing and improving policies, procedures, establishing metrics to drive remediation priorities. Last but not least, implementation of mitigation strategies, and collaboration with business stakeholders to enhance organisation’s overall security posture.

• Establish metrics and KPIs: Develop clear metrics (e.g., average time-to-patch, severity-based closure rates) and set targets for improving your organization’s risk posture.
• Draft and maintain policies, standards, and procedures that articulate how the organization identifies, prioritizes, and remediates vulnerabilities.

• Analyse, prioritize, and collate vulnerability scan results for APAC, EMEA, and North America.
• Collaborate with regional Risk Remediation Leads to ensure vulnerabilities are addressed.
• Act as the Risk Remediation Lead in specific regions when required (e.g., Singapore).
• Work closely with various IT and security teams to implement fixes.

• Perform and operate monthly vulnerability scans across the global enterprise.
• Configure scans optimally, providing justifications for scan settings and recommendations.
• Schedule and troubleshoot scans while ensuring they do not cause system outages.

• Track and report on Known Exploited Vulnerabilities (KEV) and other Critical and High severity vulnerabilities.
• Provide quantifiable metrics and visual reporting (graphs, statistics) to demonstrate remediation progress and quantities of vulnerabilities.

• Ensure the vulnerability management program operates efficiently.
• Identify and implement vulnerability management program enhancements annually to improve risk reduction.

• Bachelor’s Degree in Information Technology / Cybersecurity and Forensics or equivalent professional experiences.
• Possessed cybersecurity professional certifications such as; CISSP, CEH, SANS GIAC, Microsoft, Cisco & etc.
• 5 to 7 years of progressive experience in at least one of the following disciplines:
  • Vulnerability Management (program design, scanning, reporting, remediation coordination)
  • Network Security & Architecture (TCP/IP, firewalls, IDS/IPS, endpoint security)
• Risk Prioritization & Scoring (e.g., CVSS, zero-day threat analysis, environment-specific risk ranking)
• IT/Security Engineering (securing Windows, Linux, and cloud platforms, deploying security tools)
• Compliance & Regulatory Frameworks (PCI-DSS, ISO 27001, NIST, etc.)
• Demonstrated ability to translate technical vulnerabilities and remediation actions into clear, actionable tasks for diverse audiences (IT, DevOps, leadership).
• Experience working with vulnerability scanning tools (e.g., Tenable, Qualys, Rapid7) and application security testing (SAST, DAST) is highly preferred.
• Familiar with cloud environments (AWS, Azure, GCP) and scripting/automation (e.g., Python, PowerShell, or API integrations) is a plus.