Vulnerability Engineer Remote

Overview

Vulnerability Engineer
• Remote
• Fulltime
• Salary: $90K-$110K+benefits

• Identifying, analyzing, prioritizing, and remediating security vulnerabilities across Windows and Linux server environments.
• Hands-on experience with Windows Server and Linux Server administrations.
• Familiarity with vulnerability scanning platforms and a good understanding of network fundamentals, firewalls, authentication, and encryption.
• Support the organization’s security posture by ensuring timely identification, analysis, and remediation of vulnerabilities across middleware platforms.
• Collaborate with the ITVM team to review weekly/biweekly scan reports, validate findings, and translate them into actionable remediation tasks.
• Understanding of CVEs, CVSS scoring, zero day vulnerabilities, and threat exposure.
• Knowledge of security best practices and remediation of misconfigurations, outdated libraries, and insecure protocols.
• Prepare detailed remediation plans including impact assessments, risk evaluations, timelines, and required resource coordination.
• Execute configuration-level hardening and apply vendor fix packs on middleware technologies such as JBoss, Tomcat, IBM Client, and Web Sphere.
• Ensure all remediation activities follow structured change management processes, maintaining system stability and preventing service disruptions.
• Coordinate with cross-functional teams including application, infrastructure, and security teams to ensure smooth implementation and validation.
• Maintain comprehensive documentation for all remediation activities, configurations, approvals, and compliance requirements.
• Monitor and prioritize high-severity vulnerabilities to meet organizational security SLAs and regulatory expectations.
• Manage and maintain clear communication across Email DLs, Teams channels and ITSM platforms (Service Now) to streamline collaboration and track vulnerability closure.
• Utilize vendor support IDs to download patches, engage vendor support, and resolve complex middleware remediation issues.
• Experience with scripting (Power Shell, Bash, Python optional).
• Contribute to continuous improvement of vulnerability management processes through analysis, feedback, and proactive security hardening.

• Familiarity with Vulnerability scanning platforms and a good understanding of network fundamentals, firewalls, authentication, and encryption.
• Strong hands-on experience with Windows Server and Linux Server administrations.
• Understanding of CVEs, CVSS scoring, zero day vulnerabilities, and threat exposure.
• Knowledge of security best practices and remediation of misconfigurations, outdated libraries, and insecure protocols.
• Experience with scripting (Power Shell, Bash, Python optional).
• Ability to prepare remediation plans and coordinate resources and timelines.

Note:

This description preserves the original role and responsibilities while organizing content into clear sections and compliant HTML structure.