{"schemaVersion":"jobsearcher.job.v1","id":"faeaf1d35be48b372cddfda2","url":"https://jobsearcher.com/jobs/faeaf1d35be48b372cddfda2","canonicalUrl":"https://jobsearcher.com/jobs/faeaf1d35be48b372cddfda2","title":"Information System Security Engineer","description":"Electrosoft Services, Inc. is an award-winning company that provides comprehensive technology-based solutions and services to federal customers. While cybersecurity is our specialty, we also focus on ICAM, enterprise IT modernization, and software solutions. We always seek to delight our customers, so we retain highly qualified employees and offer them meaningful work, growth opportunities, and work-life balance. What sets us apart from all other contractors is the sense of teamwork our employees feel – and the knowledge that outstanding effort is recognized and rewarded. The camaraderie we share emanates from Lunch & Learn sessions where we explore new ideas together, fun group activities ranging from escape rooms to miniature golf, and much, much more. If we’ve described you and your dream workplace, please apply and share in the many benefits and opportunities we offer.\nInformation System Security Engineer (Risk & Vulnerability Management)\nSummary:\nThe Security Engineer - Risk & Vulnerability Management is a key member of the Information Security team, responsible for proactively identifying, assessing, and mitigating security risks associated with the organization's servers, software applications, and cloud infrastructure. This role requires a deep understanding of vulnerability management best practices, and risk assessment frameworks. The Security Engineer will work closely with IT teams to ensure timely remediation of vulnerabilities and the implementation of effective security controls.\nResponsibilities:\nRisk Assessment & Management:\nPlan, execute, and document comprehensive security risk assessments of servers (on-premise and cloud), software applications (web and desktop), and infrastructure components.\nAnalyze business impact, threat landscape, and vulnerability data to determine overall risk posture.\nDevelop and maintain a risk register, tracking identified risks, mitigation plans, and remediation progress.\nContribute to the development and maintenance of the organization's risk management framework.\nVulnerability Management:\nPerform regular vulnerability scanning using tools such as Nessus, Qualys, Rapid7 InsightVM, or similar.\nAnalyze scan results, identify false positives, and prioritize vulnerabilities for remediation.\nCollaborate with system administrators, developers, and other IT teams to ensure timely patching and remediation of vulnerabilities.\nTrack and report on vulnerability remediation progress.\nSecurity Tooling & Automation:\nMaintain and improve vulnerability scanning infrastructure.\nDevelop and implement automation scripts to streamline vulnerability management processes.\nEvaluate and recommend new security tools and technologies to enhance risk assessment and vulnerability management capabilities.\nSecurity Awareness & Training:\nDevelop and deliver security awareness training to IT staff and other stakeholders on risk assessment and vulnerability management best practices.\nCompliance & Reporting:\nEnsure compliance with relevant security standards and regulations (e.g., PCI DSS, HIPAA, GDPR).\nPrepare reports on risk assessment findings, vulnerability remediation progress, and overall security posture.\nThought Leadership & Customer Engagement:\nResearch and write white papers, blog posts, or articles on emerging cyber threats, security trends, and best practices.\nDevelop actionable recommendations for customers to improve their security posture based on the latest threat intelligence and industry trends.\nPresent findings and recommendations to customers and internal stakeholders.\nBasic Qualifications:\nBachelor's degree in Computer Science, Information Security, or a related field.\n5+ years of experience in information security, with a strong focus on risk assessment and vulnerability management.\nIn-depth understanding of vulnerability management frameworks (e.g., NIST 800-53, OWASP).\nExperience with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7 InsightVM, OpenVAS) and penetration testing tools (e.g., Metasploit, Burp Suite).\nStrong knowledge of common operating systems (Windows, Linux), networking protocols, and web application security.\nExperience with scripting languages (e.g., Python, PowerShell) for automation.\nExcellent analytical, problem-solving, and communication skills.\nRelevant 8140 security certifications (e.g., CISSP, CISA, CISM, OSCP, CEH) preferred.\nExperience with cloud security (AWS, Azure, GCP)","company":"Electrosoft Services","rawCompany":"electrosoft services","city":"Belleville","state":"IL","isRemote":false,"isActive":false,"createdAt":"2026-04-14T10:21:16.639Z","occupations":[{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"13-1199.07","title":"Security Management Specialists","slug":"security-management-specialists"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541690","title":"Other Scientific and Technical Consulting Services","slug":"other-scientific-and-technical-consulting-services"},{"code":"541519","title":"Other Computer Related Services","slug":"other-computer-related-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Information System Security Engineer","description":"Electrosoft Services, Inc. is an award-winning company that provides comprehensive technology-based solutions and services to federal customers. While cybersecurity is our specialty, we also focus on ICAM, enterprise IT modernization, and software solutions. We always seek to delight our customers, so we retain highly qualified employees and offer them meaningful work, growth opportunities, and work-life balance. What sets us apart from all other contractors is the sense of teamwork our employees feel – and the knowledge that outstanding effort is recognized and rewarded. The camaraderie we share emanates from Lunch & Learn sessions where we explore new ideas together, fun group activities ranging from escape rooms to miniature golf, and much, much more. If we’ve described you and your dream workplace, please apply and share in the many benefits and opportunities we offer.\nInformation System Security Engineer (Risk & Vulnerability Management)\nSummary:\nThe Security Engineer - Risk & Vulnerability Management is a key member of the Information Security team, responsible for proactively identifying, assessing, and mitigating security risks associated with the organization's servers, software applications, and cloud infrastructure. This role requires a deep understanding of vulnerability management best practices, and risk assessment frameworks. The Security Engineer will work closely with IT teams to ensure timely remediation of vulnerabilities and the implementation of effective security controls.\nResponsibilities:\nRisk Assessment & Management:\nPlan, execute, and document comprehensive security risk assessments of servers (on-premise and cloud), software applications (web and desktop), and infrastructure components.\nAnalyze business impact, threat landscape, and vulnerability data to determine overall risk posture.\nDevelop and maintain a risk register, tracking identified risks, mitigation plans, and remediation progress.\nContribute to the development and maintenance of the organization's risk management framework.\nVulnerability Management:\nPerform regular vulnerability scanning using tools such as Nessus, Qualys, Rapid7 InsightVM, or similar.\nAnalyze scan results, identify false positives, and prioritize vulnerabilities for remediation.\nCollaborate with system administrators, developers, and other IT teams to ensure timely patching and remediation of vulnerabilities.\nTrack and report on vulnerability remediation progress.\nSecurity Tooling & Automation:\nMaintain and improve vulnerability scanning infrastructure.\nDevelop and implement automation scripts to streamline vulnerability management processes.\nEvaluate and recommend new security tools and technologies to enhance risk assessment and vulnerability management capabilities.\nSecurity Awareness & Training:\nDevelop and deliver security awareness training to IT staff and other stakeholders on risk assessment and vulnerability management best practices.\nCompliance & Reporting:\nEnsure compliance with relevant security standards and regulations (e.g., PCI DSS, HIPAA, GDPR).\nPrepare reports on risk assessment findings, vulnerability remediation progress, and overall security posture.\nThought Leadership & Customer Engagement:\nResearch and write white papers, blog posts, or articles on emerging cyber threats, security trends, and best practices.\nDevelop actionable recommendations for customers to improve their security posture based on the latest threat intelligence and industry trends.\nPresent findings and recommendations to customers and internal stakeholders.\nBasic Qualifications:\nBachelor's degree in Computer Science, Information Security, or a related field.\n5+ years of experience in information security, with a strong focus on risk assessment and vulnerability management.\nIn-depth understanding of vulnerability management frameworks (e.g., NIST 800-53, OWASP).\nExperience with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7 InsightVM, OpenVAS) and penetration testing tools (e.g., Metasploit, Burp Suite).\nStrong knowledge of common operating systems (Windows, Linux), networking protocols, and web application security.\nExperience with scripting languages (e.g., Python, PowerShell) for automation.\nExcellent analytical, problem-solving, and communication skills.\nRelevant 8140 security certifications (e.g., CISSP, CISA, CISM, OSCP, CEH) preferred.\nExperience with cloud security (AWS, Azure, GCP)","datePosted":"2026-04-14T10:21:16.639Z","dateModified":"2026-04-14T10:21:16.639Z","hiringOrganization":{"@type":"Organization","name":"Electrosoft Services","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Belleville","addressRegion":"IL","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"faeaf1d35be48b372cddfda2"},"url":"https://jobsearcher.com/jobs/faeaf1d35be48b372cddfda2"}}