Vulnerability Management Engineer - Mid-Atlantic (Remote in EST/CST)
Remote in Eastern or Central time zones
Applications have closed
GuidePoint Security LLC
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
As a Vulnerability Management Engineer, you will be part of a team of highly skilled engineers providing delivery services for customers in several verticals including retail, finance, healthcare, and more. Your primary responsibilities revolve around partnering with our customers to advise, develop, implement, and optimize all components of the vulnerability management lifecycle.
Note: This is a remote position but applicants must located in Eastern or Central time zones to be considered.
Technical Skills & Knowledge Required:
- Experience with the entire vulnerability management lifecycle, assisting with building and maintaining vulnerability management programs in large and complex environments
- MUST have experience with Qualys VMDR and Qualys Policy Compliance
- Ability to deploy Qualys virtual scanning infrastructure on-premises and in the public cloud
- A strong understanding of configuring scan settings, setting up authenticated scans, deploying cloud agents, configuring queries, and producing reports
- An understanding of operating systems such as Windows Server, Windows 10/7, Mac OSX, RHEL, and Ubuntu Linux and the ability to perform basic functions at the CLI
- An understanding of networking concepts, protocols and detailed knowledge of how networks function
- A strong understanding of systems design and implementation
- An understanding of how and why vulnerabilities exist and are exploited
- Ability to understand and articulate complex vulnerability information to both technical and non-technical audience
- Ability to quantify true risk of vulnerability findings given environmental and extenuating circumstance
- Ability to interpret vulnerability scan results and build creative remediation strategies to remediate vulnerabilities
- Ability to design compensating controls when technical fixes may not be feasible
- Strong written and verbal communication skills
- A strong desire to learn new technologies and contribute to a fast-growing company
Other relevant experience:
- Experience with public cloud providers such as Amazon AWS, Microsoft Azure, or Google GCP
- Hands-on experience hardening systems to benchmarks such as CIS, NIST, etc.
- Experience with system administration tasks within Active Directory, Microsoft Office 365, and Email Security Solutions
Education:
- Bachelor's degree in Computer Science, Engineering, Information Systems / Security or related discipline preferred
We use Greenhouse Software as our applicant tracking system and communicate through their systems. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
Why GuidePoint?
GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 750 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 3,000 Enterprise-Level customers.
Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.
This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
Some added perks….
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
- 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Care plan
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory AWS Azure Cloud Compliance Computer Science Finance GCP Linux NIST Qualys Ubuntu Vulnerabilities Vulnerability management Windows
Perks/benefits: Career development Flex hours Flex vacation Home office stipend
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs