Vulnerability Management Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• The Vulnerability Engineer will lead the organization's efforts in vulnerability management, focusing on the identification, prioritization, and mitigation of vulnerabilities within the client's digital assets.

• Assist clients in minimizing their organizational risk by identifying, validating, and prioritizing vulnerabilities along with their respective remediation strategies.

• Spearhead the configuration, management, and optimization of vulnerability management tools to effectively identify, assess, and prioritize vulnerabilities across the organization’s assets.

• Collaborate closely with technology and security teams to ensure prompt remediation of vulnerabilities in alignment with organizational risk thresholds and compliance requirements.

• Perform regular risk assessments utilizing vulnerability management tools to deliver a comprehensive understanding of the security posture across networks, web applications, and cloud infrastructures.

• Create and present detailed reports, including executive-level summaries, that highlight vulnerabilities, risk scores, and progress on remediation efforts.

• Analyze threat trends and provide guidance on proactive measures for mitigation based on emerging threats that could affect the organization.

• Design and implement automation for scanning, reporting, and remediation workflows to enhance efficiency and decrease response times.

• Continuously assess and refine processes to guarantee effective service delivery to the organization.

• Serve as a primary point of contact for stakeholders across the organization regarding platform functionalities, findings, and best practices.

• Collaborate with security, risk, and IT operations teams to align vulnerability management activities with broader security initiatives.

• Mentor junior security team members on best practices in vulnerability management, supporting their professional growth.

• Ensure that the vulnerability platform and associated integrations are maintained, updated, and optimized for optimal performance.

• Troubleshoot issues within the platform and coordinate with support as needed to resolve complex challenges.

• Stay updated with the latest trends in vulnerability management.

• Engage in the evaluation of emerging tools and technologies that may enhance or complement the organization's capabilities.

• Utilize your advanced knowledge of security technologies to effectively communicate and mitigate cyber risks.

• Develop recommendations and enhancements to advance a client’s cybersecurity program.

• Participation in a 24x7 rotation is required.

⛳️ Requirements

• Bachelor's Degree in a relevant field and five (5) or more years of experience in Information Technology.

• Alternatively, two (2) years of experience in a related technology field along with relevant industry certifications are mandatory.

• A minimum of three (3) years of experience should involve direct support of vulnerability management.

• Proficient in both Linux and Windows operating systems.

• Strong understanding of security concepts and operational practices.

• Solid grasp of networking concepts and architecture.

• Experience with data visualization tools and possess strong analytical abilities.

• At least two (2) years of experience with CrowdStrike Spotlight.

• Experience in implementing, configuring, and managing vulnerability assessment tools including Tenable Nessus, Tenable.SC, Tenable.IO, Tenable NNM/PVS, and CrowdStrike Spotlight.

• Proven experience in analyzing vulnerability scan outcomes and asset data to prioritize remediation efforts.

• Experience conducting vulnerability scans in operationally sensitive environments.

• Experience performing vulnerability scans in public cloud settings.

• Exhibit exceptional organizational abilities to compile, analyze, develop, and present detailed reports.

• Strong written and verbal communication skills are essential.

• Ability to meet deadlines for project-based assignments.

• Must be a citizen of the United States.

🏝️ Benefits

• Engagement and support from company leadership who acknowledge the challenges of marketing complex cybersecurity services in a dynamic market.

• An organization that values and rewards employee dedication and contributions to customer satisfaction and success.

• Opportunities for career growth and skill enhancement as you help shape a path to improving customer interaction and service adoption.

• A collaborative and results-driven work environment within a rapidly expanding company and market.

• A fun and social workplace where you are encouraged to be authentic.