Exposure Management Engineer – Northeast region

This is a fully remote position, open to applicants in United States.

📋 Description

• Operate and manage security platforms, including vulnerability management, CAASM, and CNAPP tools.

• Monitor security findings and assist in the prioritization and remediation processes.

• Aid in platform tuning, configuration enhancement, and integration with client environments.

• Support the onboarding of new assets, applications, and cloud environments into security platforms.

• Review exposure findings and help with prioritization and tracking of remediation.

• Assist in managing remediation workflows alongside client engineering teams.

• Create operational dashboards and reports for security leadership.

• Help maintain asset inventory coverage and ensure scanning accuracy.

• Assist in the operation and optimization of CNAPP platforms (e.g., Wiz, Prisma Cloud, Orca).

• Support cloud posture monitoring and conduct exposure analysis.

• Aid in investigating cloud misconfigurations, identity exposures, and attack pathways.

• Collaborate with senior engineers to onboard new cloud environments.

• Develop scripts and automation to enhance security workflows.

• Build integrations between security tools and ticketing systems.

• Automate reporting, vulnerability triage, and remediation tracking.

• Utilize APIs and automation frameworks to minimize manual operational efforts.

• Participate in regular operational cadence meetings with clients.

• Provide updates regarding platform findings and remediation progress.

• Assist senior engineers in troubleshooting issues related to security platforms.

• Contribute to the development of documentation and operational playbooks.

⛳️ Requirements

• Over 3 years of experience in cybersecurity engineering.

• Experience in exposure management or risk-based vulnerability management.

• Familiarity with vulnerability management, exposure management, or CNAPP platforms such as Tenable, Qualys, Rapid7, Wiz, Axonius, or similar tools.

• Scripting experience in Python, PowerShell, or comparable languages.

• Experience working with APIs or automating workflows.

• Understanding of security fundamentals: vulnerabilities, misconfigurations, identity and access control, and security monitoring.

• Strong communication skills with the ability to collaborate effectively with engineering teams.

🏝️ Benefits

• Primarily remote workforce (U.S. based only; some travel may be necessary for specific positions, and on-site work may be required for Federal roles).

• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint covers 90% of employee premiums and 70% for family plans (spouse/children/family)) or High Deductible Health Plan with HSA (GuidePoint pays 100% of employee premiums and 75% for family plans (spouse/children/family). For the High Deductible / HSA plan, GPS contributes in 4 equal quarterly installments: ($850 per employee annually / $1750 per family annually (includes spouse/children/family options)).

• Group Dental Insurance: GuidePoint covers 100% of employee premiums and 75% of family plans.

• 12 corporate holidays and a Flexible Time Off (FTO) program.

• Healthy mobile phone and home internet allowance.

• Eligibility for a retirement plan after 2 months at open enrollment.

• Pet Benefit Option.