×
Register Here to Apply for Jobs or Post Jobs. X

Lead Vulnerability Remediation Engineer - Infrastructure Engineer

Job in Raleigh, Wake County, North Carolina, 27601, USA
Listing for: SunTrust Investment Services, Inc.
Full Time position
Listed on 2026-07-11
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below

Lead Infrastructure Engineer

The Lead Infrastructure Engineer within Truist's Digital Workplace organization is accountable for enterprise governance, risk reduction, and lifecycle oversight of endpoint vulnerabilities and configuration compliance across physical and virtual (VDI) environments. This role partners across engineering, operations, and security stakeholders to identify, prioritize, remediate, and prevent endpoint security exposures while producing defensible, repeatable, and scalable solutions aligned to Truist standards. This position supports a proactive operating model emphasizing automation, prevention, and measurable outcomes.

For this opportunity, Truist will not sponsor an applicant for work visa status or employment authorization, nor will we offer any immigration-related support for this position (including, but not limited to H-1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN-1 or TN-2, E-3, O-1, or future sponsorship for U.S. lawful permanent residence status.)

This position is office-centric 5 days a week in our Truist hubs.

General Essential Duties and Responsibilities Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

  • Builds and designs enterprise infrastructure technology platforms and systems across various environments, such as cloud, network, database, storage, platform, computing, and/or middleware domains.
  • Applies automation, monitoring, and optimization techniques to ensure high availability and performance of infrastructure.
  • Collaborates with cross-functional teams to integrate new technologies and continuously improve infrastructure standards and processes.
  • Troubleshoots and resolves moderately complex technical issues impacting infrastructure performance and reliability.
  • Supports compliance with technology strategies, standards, and governance to mitigate risks and ensure regulatory adherence.
  • Deploys infrastructure designs, configurations, and procedures to support operational consistency and knowledge sharing.
  • Proactively contributes to technical innovation efforts and advancement of infrastructure capabilities.
  • Works with technical project teams to support infrastructure deliverables and solutions.
  • Makes adjustments or recommends enhancements in technical systems and processes to improve effectiveness of area of responsibility.
  • Specific job Function:

    • 1) Endpoint Vulnerability Management (Enterprise Scale)

    • Operate and mature the endpoint vulnerability lifecycle: discovery → prioritization → remediation → validation → reporting.

    • Perform vulnerability identification and prioritization using Qualys and or other security agents, including (but not limited to) Microsoft Security Updates and major 3rd‑party applications (e.g., Chrome, Edge, legacy dependencies where applicable).

    • Drive risk-based remediation workflows aligned to business impact, exploitability, and fleet exposure.

    • Validate remediation efficacy and ensure vulnerability closure is auditable and reproducible.

    • 2) Secure Baseline Configuration (SBC) & Compliance (Windows 11 + VDI)

    • Own Secure Baseline Configuration compliance outcomes for Windows 11 across physical devices and VDI.

    • Detect and correct compliance drift; build governance routines to prevent recurring deviation.

    • Translate policy intent into enforceable configuration standards and operational guardrails.

    • 3) Problem Management (Root Cause + Corrective Actions)

    • Lead or co-lead root cause analysis for recurring endpoint issues and systemic remediation failures.

    • Develop long-term corrective actions, workarounds, and knowledge artifacts that reduce repeat incidents.

    • Align problem practices to Digital Workplace Problem Management goals, templates/artifacts, tooling/automation, and metrics.

    • 4) Configuration Management & Deployment Enablement (SCCM / MECM)

    • Leverage Microsoft Endpoint Configuration Manager (SCCM/MECM) to support remediation delivery at scale (packages, deployments, compliance baselines, reporting).

    • Troubleshoot deployment failures and endpoint state issues impacting remediation timelines.

    • Partner with endpoint…

    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)
    0
    200
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary