Vulnerability Management Engineer
United States - Remote
Applications have closed
SoluStaff
Unlock the full potential of your organization with Symmetrio, a top Staffing and Recruiting company in the Philadelphia region.SoluStaff is recruiting a highly skilled and motivated Vulnerability Management Engineer for our customer, a large government organization in Philadelphia, PA. In this role, you will be responsible for implementing and maintaining vulnerability management processes and tools for a large, enterprise environment. The candidate will play a critical role in leading the vulnerability management program and collaborating with cross-functional teams to analyze and prioritize vulnerabilities based on risk levels and potential impact.
This is a remote position; quarterly visits to Philadelphia will be required for team building / stakeholder discussions, etc. Competitive compensation, health benefits, PTO and 401k (4% match).
Responsibilities
- Conduct vulnerability assessments (using tools such as Rapid7 and Nessus) to identify potential security vulnerabilities within our systems, networks, and applications.
- Collaborate with cross-functional teams to analyze and prioritize vulnerabilities based on risk levels and potential impact.
- Develop and implement vulnerability management processes, procedures, and best practices to ensure timely identification, remediation, and reporting of vulnerabilities.
- Monitor and track the remediation of identified vulnerabilities, ensuring that they are addressed within defined timelines.
- Stay updated with the latest security vulnerabilities, threats, and industry best practices to continuously improve the vulnerability management program.
- Perform regular vulnerability scanning and penetration testing to proactively identify and address potential security weaknesses.
- Work closely with IT teams to provide guidance and support in remediating vulnerabilities, including suggesting configuration changes, patches, and other remediation actions.
- Provide technical expertise and guidance to internal stakeholders on vulnerability management issues and best practices.
- Collaborate with the Incident Response team to investigate and respond to security incidents related to vulnerabilities.
Requirements
- Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CEH, GIAC) are highly desirable.
- Proven experience in vulnerability management, including vulnerability scanning, assessment, and remediation.
- Strong knowledge and hands-on experience with vulnerability management tools, particularly Rapid7 (e.g., InsightVM, Nexpose) and Nessus.
- Solid understanding of common vulnerabilities, attack vectors, and mitigation techniques.
- Proficient in scripting and automation to streamline vulnerability management processes (e.g., Python, PowerShell).
- Experience with network scanning, penetration testing, and vulnerability exploitation techniques.
- Knowledge of industry standards and frameworks such as CVSS, CVE, OWASP, and NIST.
- Strong analytical and problem-solving skills, with the ability to prioritize and manage multiple tasks simultaneously.
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k, IRA)
- Paid Time Off (Vacation, Sick & Public Holidays)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation CEH CISSP Computer Science CVSS GIAC Incident response Nessus NIST OWASP Pentesting PowerShell Python Scripting Vulnerabilities Vulnerability management
Perks/benefits: 401(k) matching Competitive pay Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Security Operations Engineer jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs