Threat and Vulnerability Management

We are looking for a Staff-level Vulnerability Management Engineer to support scanning, triage, and remediation coordination across infrastructure, applications, and cloud/container environments. You will help improve our security posture by ensuring vulnerabilities are identified, prioritized, and resolved on time.

• Support asset coverage and ensure scan scope aligns with CMDB.

• Run scheduled vulnerability scans (host, network, web, container) and monitor scan health.

• Triage findings, remove duplicates/false positives, and prioritize based on CVSS/KEV/EPSS.

• Create remediation tickets, follow up with Infra/App teams, and verify fixes via re-scan.

• Assist in patch/mitigation coordination with Systems, Network, DB, and Development.

• Help track pentest/red-team findings and collect evidence.

• Prepare simple weekly/monthly dashboards (aging, compliance %, SLAs).

• Support DevSecOps basics: image/container scanning and SCA in pipelines.

• Maintain runbooks and suggest improvements for better accuracy.

• 1–3+ years in Vulnerability Management or Blue-Team/SecOps.

• Familiar with vulnerability scanners (Tenable/Qualys/OpenVAS).

• Basic knowledge of CVSS, OWASP Top 10, and common system misconfigurations.

• Understanding of Windows/Linux fundamentals and basic networking.

• Experience with ITSM workflows and preparing simple audit evidence.

• Able to create clear reports and communicate across Infra/App teams.
  
  Nice to Have

• Experience with container scanning, SCA, or basic SAST/DAST.

• Familiarity with KEV/EPSS prioritization.

• Basic scripting (Python/Bash) for automation.

• Exposure to ISO 27001 or regulated environments.