Foresite is looking for a Vulnerability Scan Engineer to join our Managed Vulnerability Research service and act as the primary architect for our customers' vulnerability management programs. Your primary focus is the health, maintenance, tuning, and proactive execution of Tenable scanning platforms. You will act as a point of escalation for all scanning-related cases across diverse client environments, ensuring that every managed network is thoroughly assessed, accurate, and actionable.
What You'll Do:
In this role, you’ll take ownership of multi-console vulnerability management, scanner health monitoring, and scan policy configuration. You will be responsible for maintaining a high-quality security posture across dozens of unique client networks—ranging from mid-market firms to enterprise environments—while ensuring all assets follow strict assessment baselines and organizational security policies.
Multi-Client Platform Management & Operations
Tier 2 Support: Act as an escalation point for the analyst team on scanning-related cases across Tenable.io and Tenable.sc (managed and on-prem) consoles.
Scanning Operations: Design and execute complex scan schedules, including discovery, credentialed vulnerability assessments, and web application scans (WAS).
API & Integration: Utilize the Tenable API to push data into central ticketing systems or SIEMs to streamline the remediation workflow and automate manual tasks.
Vulnerability Administration & Maintenance
Daily Health Monitoring: Conduct console checkups to identify "stuck" scans, scanner connectivity issues, or credential failures across On-prem, Cloud, and Hybrid architectures.
Exclusion & Exception Management: Work with client stakeholders to document and manage scan exclusions and risk acceptances to resolve conflicts without compromising security.
Scanner Troubleshooting: Troubleshoot broken Nessus agents and network-related scan gaps (NAT/Firewalls), coordinating directly with client IT contacts for remediation.
Console Hygiene: Efficiently sort through "vuln-speak" and false positives to develop custom Dashboards and automated reports that translate technical data into business risk.
Operational Excellence & Reporting
Own the Queue: Manage incoming vulnerability-related support tickets, providing rapid response and clear technical communication to both internal teams and non-technical stakeholders.
Accuracy & Quality: Vet results before they reach the client to ensure high credibility, ensuring that "False Positives" are minimized through rigorous policy tuning.
Continuous Learning: Stay current with common hardening standards (CIS, NIST) and regulatory frameworks (PCI-DSS, HIPAA, SOC2) to improve assessment workflows.
Who You Are:
Experience: 3+ years of hands-on experience with Tenable.io, Tenable.sc, and Nessus Agents.
Networking Fundamentals: Strong understanding of NAT, PAT, Firewalls, and Load Balancers and how they impact scan accuracy and scanner placement.
OS Security: Deep knowledge of Windows Registry, Linux config files, and the ability to explain why credentialed scanning is necessary to IT Managers.
Analytical Mindset: A strong ability to analyze scan logs and results to identify root causes of failures and distinguish between legitimate vulnerabilities and false positives.
Problem Solver: You don't just restart a failed scan; you dig into the data to find the fix. You can pivot easily between legacy OT environments and ephemeral cloud stacks.
Service-Minded: Excellent technical communication skills with a "customer-first" mindset and the ability to act as a partner to a client's IT team.
Nice to Have:
Platform Knowledge: Previous experience managing multi-tenant environments (MSP experience) or multiple clients simultaneously.
Certifications: Tenable Certified Professional (Highly Desired), CompTIA PenTest+, Security+, or GIAC Critical Controls Certification (GCCC).
Advanced Skills: Experience running scans for specific regulatory compliance frameworks such as PCI-DSS or HIPAA.
Specialized Experience: Deep understanding of hardening standards and translating technical vulnerabilities into actionable remediation plans for leadership.
Why Join the Foresite Team?
At Foresite, we aren’t just another security provider—we are a mission-driven partner helping organizations navigate an increasingly complex threat landscape. Founded by passionate security practitioners, we’ve grown into a global leader in SecOps and MDR by staying true to our core value: radical transparency.
When you join Foresite, you are part of a "humans-first" culture where your expertise is valued, and your well-being is a priority. We leverage our Google Cloud Premier SecOps Partnership to stay at the cutting edge, but we know that our greatest asset is our people.
What We Offer:
Comprehensive Health & Wellness: Robust medical insurance options to keep you and your family healthy.
Employer-Covered Insurance: We fully provide employer-paid Dental coverage, as well as Short-Term (STD) and Long-Term Disability (LTD).
Generous Time Off: We believe in a true work-life balance. You’ll start with 3 weeks of paid vacation, plus additional sick leave and paid company holidays to ensure you have time to recharge.
Exposture: You’d see more unique network configurations in six months here than most engineers see in their entire career.
Growth & Mentorship: Access to world-class training and mentorship. We support your career trajectory, there is a clear path to Senior Security Analyst or Lead SOC Analyst.
Tools: Access to the latest Tenable modules, including Lumin, OT Security and ExposureAI.