Senior Vulnerability Management Engineer

Texas, Irving

10/21/2025

Contract

Active

Job Summary:

The Senior Vulnerability Management Engineer is responsible for managing and enhancing the organization’s vulnerability management program to strengthen enterprise-wide security posture. This role involves identifying, assessing, prioritizing, and coordinating remediation efforts for vulnerabilities across cloud, on-premises, and hybrid environments. The ideal candidate will have extensive experience with vulnerability management tools, a strong technical background in security and compliance, and the ability to communicate risk effectively to both technical and executive audiences.

Key Responsibilities:

• Configure and maintain vulnerability management platforms such as Nucleus Security, Rapid7 Insight
  
  VM, Microsoft Defender, Sentinel One, Service Now, or Bit Sight.
• Identify, assess, and prioritize security vulnerabilities across diverse IT environments, including cloud, on-prem, and hybrid infrastructures.
• Collaborate with cross-functional teams to coordinate remediation efforts and ensure timely mitigation of security risks.
• Develop and optimize automated workflows for vulnerability tracking, reporting, and remediation.
• Prepare and present detailed reports to executive leadership, translating technical findings into business risks and recommendations.
• Participate in incident response activities during exploitation events and partner with threat intelligence teams to track emerging vulnerabilities and attack trends.
• Ensure compliance with regulatory standards and contribute to audit readiness efforts.
• Continuously evaluate and improve vulnerability management processes and controls.
• Support integration of vulnerability data with other security systems and tools for holistic visibility.

• Minimum of 5 years of experience in vulnerability management across cloud, on-premises, and hybrid environments.
• Strong understanding of operating systems (Windows, Linux, Unix), networking protocols, and cloud platforms (AWS, Azure, GCP).
• Proficiency in using vulnerability management and security tools such as Nucleus Security, Rapid7 Insight
  
  VM, Microsoft Defender for Endpoint, Service Now, or Bit Sight.
• Experience with web application vulnerabilities (OWASP Top 10) and application security testing.
• Strong knowledge of compliance frameworks and risk management practices.
• Proven ability to design and implement process automation for vulnerability tracking and reporting.
• Exceptional analytical and problem-solving skills with keen attention to detail.
• Strong written and verbal communication skills with the ability to engage both technical and executive stakeholders.

• Cloud security expertise and familiarity with emerging cloud threats.
• Experience managing security projects, including integrations and process improvements.
• Relevant certifications such as CompTIA Security+, CISSP, or CISM.
• Working knowledge of Regex for automation and data parsing.
• Basic SQL skills for querying and data analysis.
• Familiarity with the Purdue Network Model (PERA) for ICS network segmentation.

Bachelor’s degree in computer science, Cybersecurity, Information Systems, or a related field. Equivalent experience may be considered.