Vulnerability Management Engineer
GuidePoint SecurityJob Location
Job Summary
GuidePoint Security is seeking an experienced Vulnerability Management Engineer to join their delivery practice in the Mid-Atlantic. As a Vulnerability Management Engineer, you will partner with customers to advise on vulnerability management best practices, develop and implement enterprise scanning infrastructure, and analyze vulnerabilities. You will have 5+ years of information security experience and 3+ years of vulnerability engineering experience with Tenable. Your responsibilities include executing and managing vulnerability scans, deploying infrastructure, and providing guidance on compliance scanning. The ideal candidate has experience with scripting tasks, cloud service providers, and compliance frameworks. GuidePoint Security offers flexible remote work options and a fast-growing company culture.
GuidePoint Security is seeking an experienced Vulnerability Management Engineer to join our delivery practice in the Mid-Atlantic.
Note: This is a remote position but candidates living in our Mid-Atlantic region (VA, MD, PA, NC, DE, NJ, or DC) are preferred.
Summary
As a Vulnerability Management Engineer (Tenable), you will be part of a team of highly skilled engineers providing delivery services for customers in several verticals, including retail, finance, healthcare, and more. Your primary responsibilities revolve around partnering with our customers to advise, develop, implement, and optimize all components of the vulnerability management lifecycle.
Role and Responsibilities:
Execute and manage vulnerability scanning of internal, external, and cloud assets
Plan, design, and implement enterprise vulnerability scanning infrastructure in a hybrid or multi-cloud architecture
Deploy vulnerability management infrastructure such as scanners, sensors, and agent configurations
Perform vulnerability scanning with the Tenable Nessus
Analyze vulnerabilities and clearly communicate impact and risk to the organization
Advise customers on Vulnerability Management best practices
Development of custom compliance and audit files for tenable compliance scanning
Provide guidance and collaborate with peers on the Vulnerability Management practice team
Establish credibility as a trusted advisor to our customers
Experience, Education, and Technical Requirements
5+ years of information security experience
3+ years of vulnerability engineering experience with Tenable REQUIRED
3+ years of performing compliance scanning with Tenable (CIS, NIST, DISA)
Experience developing custom compliance and audit checks with Tenable Nessus REQUIRED
Must have experience with Tenable.io or Tenable Security Center
Experience with scripting tasks using native tools such as BASH, PowerShell, Python, or other native scripting languages
Experience with Regex for data parsing
Experience with cloud service providers such as Amazon AWS, Microsoft Azure, or Google Cloud Platform.
Experience with compliance frameworks such as CIS, NIST, DISA Required
Experience developing Infrastructure as Code, such as Terraform, or Cloud Formation is a plus
Experience with Kubernetes, containers, Ci/CD or serverless is a plus
An understanding of operating systems such as Windows Server, Windows 10/7, Mac OSX, RHEL, and Ubuntu Linux and the ability to perform advanced functions at the CLI
Ability to manage time independently while handling multiple projects concurrently
Strong written and verbal communication skills
A strong desire to learn new technologies and contribute to a fast-growing company
