[Remote] Vulnerability Management Engineer

Note: The job is a remote job and is open to candidates in USA. NuHarbor Security is dedicated to enhancing cybersecurity for clients through a range of services. The Vulnerability Management Engineer will lead efforts in vulnerability management, focusing on identifying, prioritizing, and mitigating vulnerabilities across clients' digital assets while collaborating with technology and security teams to ensure compliance and swift remediation.

Responsibilities

• Help customers reduce their organizational risk by discovering, validating, and prioritizing vulnerabilities and associated remediations
• Lead efforts to configure, manage, and optimize vulnerability management tools to identify, assess, and prioritize vulnerabilities across an organization’s assets
• Work closely with technology and security teams to ensure timely remediation of vulnerabilities in accordance with organizational risk thresholds and compliance requirements
• Conduct regular risk assessments using vulnerability management tools to provide a clear understanding of the security posture across networks, web applications, and cloud infrastructure
• Generate and present detailed reports, including executive-level summaries, that outline vulnerabilities, risk scores, and remediation progress
• Analyze threat trends and advise on proactive measures for mitigation based on emerging threats that may impact the organization
• Develop and implement automation for scanning, reporting, and remediation workflows to improve efficiency and reduce response times
• Continuously evaluate and refine processes to ensure efficient delivery of services to the organization
• Act as a key point of contact for stakeholders across the organization regarding platform capabilities, findings, and best practices
• Work closely with security, risk, and IT operations teams to align vulnerability management activities with broader security initiatives
• Mentor junior security team members on vulnerability management best practices, assisting in their professional development
• Ensure that vulnerability platform and related integrations are maintained, updated, and optimized for peak performance
• Troubleshoot issues within the platform and work with support if necessary to resolve complex problems
• Stay current with the latest trends in vulnerability management
• Participate in the evaluation of emerging tools and technologies that could enhance or complement capabilities within the organization
• Use your advanced understanding of, and ability to communicate, security technologies to mitigate cyber risks
• Develop recommendations and enhancements to mature a client’s cybersecurity program
• Required to participate in 24x7 rotation

Skills

• Bachelor's Degree in a related field and five (5) or more years in Information Technology
• In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required
• Three (3) or more years of experience should have been directly supporting vulnerability management
• Strong Linux and Windows proficiency
• Strong understanding of security concepts and operations
• Strong understanding of networking concepts and architecture
• Experience with data visualization tools and strong analytical skills
• A minimum of two (2) years of CrowdStrike Spotlight experience
• Experience implementing, configuring, and managing vulnerability assessment tools including Tenable Nessus, Tenable.SC, Tenable.IO and Tenable NNM/PVS, and CrowdStrike Spotlight
• Experience in analyzing vulnerability scan results and asset data to prioritize remediation activities
• Experience performing vulnerability scanning in operationally sensitive environments
• Experience performing vulnerability scanning in public cloud environments
• Exhibit superior organizational skills to organize, analyze, develop, and deliver detailed reports
• Strong written and verbal communication skills
• Ability to meet deadlines for project-based tasks
• Must be a citizen of the United States
• Extensive experience with CrowdStrike Spotlight
• Log analysis using a SEIM product
• Experience in customer support
• Ability to manage multiple priorities in a fast-paced environment
• Strong analytical and technical skills

Benefits

• This role is eligible for the company bonus plan at a 10% target
• The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market.
• An organization that recognizes and rewards employee commitment and contribution to our customers’ satisfaction and success.
• Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption.
• A collaborative and driven working environment in a rapidly growing company and market.
• A fun and social working environment where you are encouraged to be your true self.

Company Overview