Vulnerability Engineer
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
Title: Vulnerability EngineerLocation: 100% RemoteDuration: 12 Months (possible extension)Must have:3 plus years’ experience in vulnerability management-Qualys or Tenable or NessusRequired Qualifications3+ years of demonstrated experience in vulnerability management in enterprise class environments.Experience with vulnerability management across cloud and container environments and supporting enterprise tools.Strong understanding of vulnerability management lifecycle activities, including identification, validation, prioritization, remediation coordination, risk treatment awareness, and closure verification.Experience working with large datasets, vulnerability reports, asset information, and operational metrics to identify trends, discrepancies, and actionable insights.Strong written and verbal communication skills, with the ability to translate technical vulnerability findings into clear remediation guidance, risk summaries, and prioritization recommendations for technical and non-technical stakeholders.Working knowledge of common enterprise technology environments, including servers, endpoints, network infrastructure, cloud platforms, containerized workloads, and container image lifecycle management.Preferred QualificationsExperience in financial services, regulated environments, or organizations with formal technology risk, audit, compliance, and vulnerability management regulatory requirements (PCI DSS, FFIEC).Scripting, automation, API, and data analysis experience using tools or languages such as Python, PowerShell, VBA, Power Query, SQL, R, or similar.Experience with business intelligence, reporting, or analytics tools such as Power BI and Excel for validating reports, analyzing trends, and communicating actionable insights.Practical familiarity with AI-enabled productivity or analysis tools, coding assistants, prompt-based workflows, or tool orchestration in a professional setting.Relevant security or technology certifications such as Security+, CySA+, CISSP, cloud security certifications, vulnerability management vendor certifications, or equivalent practical experience.Tools and Environment (Preferred)Vulnerability management and scanning platforms such as Qualys, Wiz, or comparable enterprise vulnerability management tools.External attack surface management tools, exposure monitoring platforms, and internet-facing asset discovery workflows.Cloud and container environments, including AWS, Azure, GCP, Kubernetes, container image lifecycle management, and cloud workload security fundamentals.