Job Summary: Remote Contract PositionThe Cybersecurity Engineer –Vulnerability Management plays a critical role in strengthening the organization's security posture by building comprehensive asset visibility, scaling vulnerability discovery and scanning, improving patch management hygiene, and driving effective remediation across all environments. This position offers a dynamic opportunity to tackle evolving security challenges in a fast-paced, rapidly changing environment.Key ResponsibilitiesAsset Discovery and Inventory Management
Build, maintain, and scale enterprise-wide asset inventory and visibility capabilities across on-premises, cloud, endpoint, and mobile environments.
Implement processes and tools to ensure accurate, up-to-date mapping of all IT assets.
Vulnerability Scanning and Discovery
Design, build, and deploy automation solutions to scale infrastructure and application vulnerability discovery and scanning efforts across the enterprise.
Implement and support security-focused tools and services for continuous vulnerability detection.
Vulnerability Analysis and Remediation
Analyze vulnerabilities, associated exploit code, and potential impact to translate technical findings into actionable intelligence.
Prioritize remediation and mitigation efforts based on risk context, business impact, and exploitability.
Drive vulnerability remediation across development, production, cloud, endpoint, and mobile assets by providing clear, actionable security guidance and technical support.
Develop and document standardized procedures for vulnerability review, remediation, and verification.
Patch Management and Hardening
Collaborate directly with the patch management team to improve overall patch health and compliance.
Apply system hardening, configuration management, and remediation techniques to reduce security risks.
Security Operations and Compliance
Provide Tier 1 security operations support related to vulnerability management.
Participate in security compliance initiatives (e.G., PCI DSS, SSAE 16 / SOC 2, ISO 27001, and others).
Contribute to on-call rotation duties for vulnerability management escalations.
Required Skills and ExperienceProfessional Experience
5+ years of professional experience in IT or Cybersecurity, including at least 2 years focused on vulnerability management, application security, or related fields.
Hands-on experience working in Agile environments and/or supporting business-to-consumer e-commerce platforms is preferred.
Technical Skills
Vulnerability Management: Proficiency with vulnerability scanning and management tools (e.G., Qualys, Nessus, Rapid7 Nexpose, or equivalent), including scanning, reporting, and risk prioritization processes.
Automation and Scripting: Strong scripting skills in languages such as Python, PowerShell, Bash, or Windows Shell to automate discovery, scanning, and remediation workflows.
Network and System Security: In-depth knowledge of network and web protocols (e.G., TCP/IP, UDP, IPsec, HTTP/HTTPS, routing protocols) and industry best practices for network, system, and software security.
Vulnerability Analysis: Detailed understanding of system security vulnerabilities, remediation techniques, malware analysis basics, and malicious code constructs (e.G., imports, exports, PE sections).
Risk and Compliance: Experience with vulnerability management lifecycle processes, including asset management, scanning, patching, hardening, configuration management, risk assessment, and compliance reporting.
Compliance Frameworks: Familiarity with relevant standards such as PCI DSS, SSAE 16 / SOC reports, ISO 27001, and others.
Education and Certifications
Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related technical field (or equivalent professional experience).
One or more relevant security certifications, such as CompTIA Security+, CySA+, CCNA Cyber Ops, AWS Security, GSEC, GICSP, CISSP, or equivalent.