Vulnerability Management Engineer

United States - Remote

Applications have closed

SoluStaff

Unlock the full potential of your organization with Symmetrio, a top Staffing and Recruiting company in the Philadelphia region.

View company page

SoluStaff is recruiting a highly skilled and motivated Vulnerability Management Engineer for our customer, a large government organization in Philadelphia, PA. In this role, you will be responsible for implementing and maintaining vulnerability management processes and tools for a large, enterprise environment. The candidate will play a critical role in leading the vulnerability management program and collaborating with cross-functional teams to analyze and prioritize vulnerabilities based on risk levels and potential impact.

This is a remote position; quarterly visits to Philadelphia will be required for team building / stakeholder discussions, etc. Competitive compensation, health benefits, PTO and 401k (4% match).




Responsibilities


  • Conduct vulnerability assessments (using tools such as Rapid7 and Nessus) to identify potential security vulnerabilities within our systems, networks, and applications.
  • Collaborate with cross-functional teams to analyze and prioritize vulnerabilities based on risk levels and potential impact.
  • Develop and implement vulnerability management processes, procedures, and best practices to ensure timely identification, remediation, and reporting of vulnerabilities.
  • Monitor and track the remediation of identified vulnerabilities, ensuring that they are addressed within defined timelines.
  • Stay updated with the latest security vulnerabilities, threats, and industry best practices to continuously improve the vulnerability management program.
  • Perform regular vulnerability scanning and penetration testing to proactively identify and address potential security weaknesses.
  • Work closely with IT teams to provide guidance and support in remediating vulnerabilities, including suggesting configuration changes, patches, and other remediation actions.
  • Provide technical expertise and guidance to internal stakeholders on vulnerability management issues and best practices.
  • Collaborate with the Incident Response team to investigate and respond to security incidents related to vulnerabilities.

Requirements

  • Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CEH, GIAC) are highly desirable.
  • Proven experience in vulnerability management, including vulnerability scanning, assessment, and remediation.
  • Strong knowledge and hands-on experience with vulnerability management tools, particularly Rapid7 (e.g., InsightVM, Nexpose) and Nessus.
  • Solid understanding of common vulnerabilities, attack vectors, and mitigation techniques.
  • Proficient in scripting and automation to streamline vulnerability management processes (e.g., Python, PowerShell).
  • Experience with network scanning, penetration testing, and vulnerability exploitation techniques.
  • Knowledge of industry standards and frameworks such as CVSS, CVE, OWASP, and NIST.
  • Strong analytical and problem-solving skills, with the ability to prioritize and manage multiple tasks simultaneously.

Benefits

  • Health Care Plan (Medical, Dental & Vision)
  • Retirement Plan (401k, IRA)
  • Paid Time Off (Vacation, Sick & Public Holidays)

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Automation CEH CISSP Computer Science CVSS GIAC Incident response Nessus NIST OWASP Pentesting PowerShell Python Scripting Vulnerabilities Vulnerability management

Perks/benefits: 401(k) matching Competitive pay Health care

Regions: Remote/Anywhere North America
Country: United States
Job stats:  60  11  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.