Senior Security Engineer

Senior Security Engineer – Position Overview

We’re standing up a dedicated vulnerability management practice at one of the largest banks in the US, automating what two vendor teams currently do by hand, and building an AI layer that takes it further. The work is hands‑on, the impact is visible, and you’ll have a delivery team ready to execute with you from day one.

Location:

Cleveland, OH;
Pittsburgh, PA;
Dallas, TX (client site). Employer sponsorship of immigration related visa and/or green card status as part of the PERM process will not be available.

• Own security‑specific vulnerability triage within the assigned execution crew — reviewing access control, privilege escalation, identity, and container security findings in the vulnerability management platform and making accurate risk assessments before routing to remediation.
• Identify false positives, risk acceptances, and exception cases that require security judgment rather than standard runbook execution.
• Validate risk scores against asset criticality and business context, re‑scoring where automated triage requires human security expertise.
• Provide security sign‑off on remediation approaches proposed by infrastructure and application engineers before high‑risk fixes proceed to change management review.

• Remediate privilege escalation vulnerabilities across application, database, and container layers by reviewing and revoking excessive service account permissions, cleaning up orphaned accounts, and enforcing least‑privilege standards aligned to enterprise IAM governance.
• Own credential and secrets management remediation for application and database credentials flagged in vulnerability scans, coordinating with the platform team for vault integration and ensuring credentials are remediated within approved workflows.
• Remediate IAM misconfigurations surfaced through vulnerability scans—including role‑based access violations, dormant privileged accounts, and unauthorized elevation paths.
• Support quarterly access review processes for CGI‑managed service accounts and automation pipeline credentials.

• Own container security vulnerability triage reviewing Docker image CVEs, runtime security alerts, and container platform security findings routed from the centralized triage function.
• Perform container configuration reviews against enterprise security standards and flag non‑compliant configurations for remediation.
• Create fix PRs for container‑level vulnerabilities within the source control workflow, adhering to branching standards and pipeline configurations.
• Review and validate application security fix approaches proposed by Java and .NET developers, specifically Spring Security misconfigurations, endpoint exposure vulnerabilities, OAuth misconfigurations, and API security gaps, providing security perspective before fixes proceed to application team sign‑off.

• Maintain accurate POAM records for all security‑classified vulnerabilities, ensuring remediation dates, risk classifications, and fix approaches are documented to audit standards required in a regulated banking environment.
• Prepare security evidence packages for regulatory audit requests, pulling remediation history and pipeline execution logs from the vulnerability management platform and work management tools.
• Identify and document risk acceptances for vulnerabilities that cannot be remediated within SLA windows, preparing justifications for information security sign‑off.
• Support the change management process for security‑classified changes by preparing security impact assessments for high‑risk remediations.

• Work closely with Infrastructure Engineers, Java and .NET Developers, Database Administrators, and Dev Sec Ops  Engineers across all three crews providing security expertise that these roles do not own individually.
• Escalate critical and high‑severity security vulnerabilities immediately upon identification, providing technical context and recommended remediation approach to enable rapid response within defined SLA…