Security Engineer - Vulnerability Management

Roles & Responsibilities:

Vulnerability Management

• Lead the end-to-end vulnerability lifecycle: identification, assessment, prioritization, remediation, and reporting.
• Deploy, configure, and optimize vulnerability scanning tools across cloud and on-premises infrastructure.
• Analyze scan results, validate findings, and coordinate with IT and development teams for timely remediation.
• Track and report vulnerability metrics, trends, and remediation progress.

Risk Assessment & Compliance

• Assess and prioritize vulnerabilities based on risk, business impact, and threat intelligence.
• Support security audits, compliance initiatives, and adherence to frameworks like NIST, ISO 27001, and CIS Controls.
• Assist in developing vulnerability management policies, standards, and procedures.

Collaboration & Continuous Improvement

• Collaborate with security operations, IT, and application teams to integrate vulnerability management into broader DevOps and security processes.
• Support incident response activities related to vulnerability exploitation.
• Promote a culture of security awareness and continuous improvement.