CrawlJobs Logo
Realign Logo Realign · IT - Software Development

Vulnerability Engineer

United States 135000.00 USD / Year · Job Posted March 21, 2026
Apply Position
Job Link Share

Job Description

Job Title: Vulnerability Engineer

Job Responsibility

  • Responsible for identifying, analyzing, prioritizing, and remediating security vulnerabilities across Windows and Linux server environments
  • Supports the organization’s security posture by ensuring timely identification, analysis, and remediation of vulnerabilities across middleware platforms
  • Collaborates with the ITVM team to review weekly/biweekly scan reports, validate findings, and translate them into actionable remediation tasks
  • Prepares detailed remediation plans including impact assessments, risk evaluations, timelines, and required resource coordination
  • Executes configuration level hardening and applies vendor fix packs on middleware technologies such as JBoss, Tomcat, IBM IHS, and WebSphere
  • Ensures all remediation activities follow structured change management processes, maintaining system stability and preventing service disruptions
  • Coordinates with cross functional teams including application, infrastructure, and security teams to ensure smooth implementation and validation
  • Maintains comprehensive documentation for all remediation activities, configurations, approvals, and compliance requirements
  • Monitors and prioritizes high severity vulnerabilities to meet organizational security SLAs and regulatory expectations
  • Manages and maintains clear communication across Email DLs, Teams channels and ITSM platforms (ServiceNow) to streamline collaboration and track vulnerability closure
  • Utilizes vendor support IDs to download patches, engage vendor support, and resolve complex middleware remediation issues
  • Contributes to continuous improvement of vulnerability management processes through analysis, feedback, and proactive security hardening

Requirements

  • Familiarity with Vulnerability scanning platforms and a good understanding of network fundamentals, firewalls, authentication, and encryption
  • Understanding of CVEs, CVSS scoring, zero day vulnerabilities, and threat exposure
  • Strong hands-on experience with Windows Server and Linux Server administrations

Nice to have

Experience with scripting (PowerShell, Bash, Python optional)

Realign - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Vulnerability Engineer

8 matching positions

Security Engineer Vulnerability & Cloud Operations

The Security Platform Engineer at NTT DATA is a critical role focused on operati...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned working knowledge on implementation and monitoring of any SIEM or security tools/technologies
  • Seasoned knowledge on security architecture, worked across different security technologies
  • Customer service orientated and pro-active thinking
  • Problem solver who is highly driven and self-organized
  • Great attention to detail
  • Good analytical and logical thinking
  • Excellent spoken and written communication skills
  • Team player with the ability to work well with others and in group with colleagues and stakeholders
  • Bachelor's degree or equivalent in Information Technology or related field
  • Seasoned experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.)
Job Responsibility
Job Responsibility
  • Works as part of a 24/7 team working on rotational shifts
  • Works as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainings
  • Administers the organization's security tools to gather security logs from environment
  • Performs lifecycle management of the supported security tools/technologies, Break-fix, Patching, Live update
  • Adheres to SOPs and notify stake holders on log flow/log format issues
  • Documents best practices
  • Identifies opportunities to make automations which will help the incident response team
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics, and a broad range of skills in LAN technologies, Windows and Linux O/S’s, and general security infrastructure
  • Carries out agreed maintenance tasks
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assist with updating as and when required
  • Fulltime
Read More
Arrow Right

Senior Staff Security Engineer – Vulnerability Management

GEICO is seeking a highly experienced Senior Staff Security Engineer to lead the...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in cybersecurity or security engineering roles
  • Deep expertise with vulnerability management tools, methodologies, and industry standards
  • Hands‑on experience with modern infrastructure, cloud services (AWS/Azure/GCP), container platforms, and operating systems
  • Proficiency with a modern programming language (Python, Go, Java, etc.) and scripting for automation at scale
  • Strong understanding of security architecture, networking, operating systems, identity, and cloud services
  • Proven ability to lead, mentor, and inspire engineers across multiple teams
  • Strong communication skills with the ability to influence senior stakeholders and translate complex risks into actionable guidance
  • Hands-on experience implementing cybersecurity frameworks e.g. NIST CSF
  • Hands-on experience with leading compliance initiatives to meet e.g. PCI, SOX, NYDFS, etc.
  • Bachelor’s degree in computer science, Cyber Security, or equivalent education with relevant work experience
Job Responsibility
Job Responsibility
  • Lead the full vulnerability lifecycle: discovery, validation, risk analysis, prioritization, and remediation measurement
  • Leverage business contextualization, underlying systems, and threat intelligence to perform risk assessment for identifying true risk to drive remediation
  • Build integrations among scanning tools, asset inventory, CMDBs, ticketing, CI/CD, and monitoring pipelines to streamline workflows
  • Evaluate, test, and implement emerging tools and technologies that advance VM automation and intelligence
  • Design automation to reduce manual work, increase accuracy, and accelerate remediation
  • Generate data‑driven insights that help teams understand, prioritize, and resolve vulnerabilities efficiently
  • Collaborate with cloud, infrastructure, DevOps, and product engineering groups to integrate vulnerability management into pipelines and delivery workflows
  • Work closely with risk, compliance, governance, and incident response teams to ensure alignment with organizational and regulatory standards
  • Communicate vulnerability trends, risk implications, and remediation strategies to technical and non‑technical stakeholders
  • Define KPIs, SLAs, dashboards, and reporting models to drive accountability and measurable vulnerability reduction
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Staff Software Engineer, Vulnerability Management

GEICO is seeking an experienced full-stack engineer with a deep technical expert...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle; Renton
Salary
Salary:
115000.00 - 230000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Tech-lead with data engineering and software development experience in a hybrid environment (AWS, Azure, on-prem)
  • Proficiency in at least one modern programming language (Python, Java, Scala, Go) and deep experience building scalable production-grade data services, APIs, or ingestion frameworks
  • Expertise in designing, building, and operating large‑scale, resilient, and high‑performance data pipelines across distributed systems, with strong knowledge of ETL/ELT patterns, data orchestration, and data quality frameworks
  • Advanced proficiency in modern data storage and processing technologies, including SQL/NoSQL databases (e.g., PostgreSQL), query optimization, and data modeling for analytical and operational use cases
  • Hands‑on experience with reporting and analytics tools such as Power BI, Tableau, or equivalent, including developing semantic models, optimizing reporting datasets, and enabling business teams with curated data
  • Strong applied skills in distributed compute ecosystems (e.g., Spark or similar), and the ability to optimize workloads for performance, cost efficiency, and reliability
  • Extensive knowledge and experience of building data intensive large-scale distributed systems on cloud
  • Experience building the architecture and design of new and current systems (architecture, design patterns, reliability, and scaling)
  • Fluency in DevOps concepts and best practices in CI/CD pipelines and infrastructure as a code
  • Experience with application performance monitoring tools and performance assessments
Job Responsibility
Job Responsibility
  • Lead software design, development, and delivery of integrated systems to drive Vulnerability Management initiatives
  • Deliver automation initiatives, conduct advanced research, and develop proofs of concept to enhance our capabilities and improve overall efficiency
  • Achieve business outcomes through force multiplication
  • Develop, integrate, and maintain multilevel cybersecurity designs, architectures, policies, and procedures
  • Provide secure design guidance and recommendations to developers, infrastructure, and product engineers
  • Influence and educate partner teams to bring an engineering first approach to develop sustainable security systems
  • Mentor peers and team members in security technologies, enterprise solution design, deployment, and effective customer interaction
  • Provide motivating demonstrations and communications to show the value of our security measures to the business, highlighting the low impact on systems, improved operability and resiliency
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Staff Engineer – Vulnerability Management Automation

GEICO is seeking an experienced Staff Engineer with a passion for building high ...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
110000.00 - 230000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong software engineering background building production services and tooling (Python or Go preferred
  • TypeScript a plus)
  • Deep knowledge of Linux and Windows Server administration and patching in enterprise environments
  • Hands‑on experience with vulnerability scanners and their APIs (Tenable/Nessus, Qualys, Rapid7) and risk models (CVSS, KEV, EPSS)
  • Proficiency with configuration management and IaC (Ansible/Puppet/Chef/Salt
  • Terraform/Pulumi/Crossplane, Helm/Kustomize)
  • Experience with event‑driven and batch data pipelines (e.g., Kafka/SNS/SQS/PubSub), relational data stores, and caching
  • Familiarity with cloud (AWS/Azure/GCP), containers/Kubernetes, and image pipelines (e.g., Packer)
  • Solid understanding of authN/authZ, secrets management, and least‑privilege access for platforms and automation
  • Excellence in observability and reliability practices (OpenTelemetry/Prometheus/Grafana) with an SLO mindset
Job Responsibility
Job Responsibility
  • Define the technical roadmap for vulnerability management and patch automation platforms
  • Establish standards, patterns, and paved roads for scanning, triage, remediation, and verification
  • Mentor engineers across Security and Platform teams on software and systems design best practices
  • Drive design reviews, architecture decisions, and quality gates for reliability and security
  • Design and implement services for asset/CMDB enrichment, risk scoring, and intelligent targeting
  • Build controllers/schedulers for maintenance windows, deployment rings/canaries, pre/post checks, automated backoff/rollback, and progressive delivery
  • Deliver self‑service CLIs/SDKs and internal UIs to request, schedule, and track remediation
  • Implement idempotent, policy‑driven workflows for patching and baseline enforcement across Windows and Linux
  • Integrate with image pipelines to shift‑left patching and hardening
  • Integrate scanner data and external intel into unified pipelines
What we offer
What we offer
  • Comprehensive Total Rewards program
  • 401K savings plan with 6% match
  • performance and recognition-based incentives
  • tuition assistance
  • mental healthcare
  • fertility and adoption assistance
  • workplace flexibility
  • GEICO Flex program (work from anywhere in the US for up to four weeks per year)
  • Fulltime
Read More
Arrow Right
New

Vulnerability Remediation Engineer

Zachary Piper Solutions is hiring a Vulnerability Remediation Engineer for a lea...
Location
Location
United States , RTP
Salary
Salary:
120000.00 - 150000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in cybersecurity, DevSecOps, or vulnerability management
  • Hands-on experience with AWS GovCloud, EKS/Kubernetes security, and CI/CD pipeline security
  • Proven experience remediating vulnerabilities in React and NodeJS environments
  • Strong understanding of compliance frameworks such as FedRAMP and NIST 800-53
  • Experience with Terraform, RBAC, and vulnerability management tools (e.g., Tenable, Aqua, Qualys)
  • Bachelor’s degree in Cybersecurity, Information Technology, or related field preferred
Job Responsibility
Job Responsibility
  • Analyze and prioritize vulnerability findings from multiple security tools based on risk and exploitability
  • Execute remediation efforts across React and NodeJS applications, including patching and configuration updates
  • Manage and secure Kubernetes (EKS) environments, including RBAC, network policies, and container hardening
  • Ensure compliance with FedRAMP and NIST 800-53 security controls within AWS GovCloud environments
  • Develop automation scripts and workflows to reduce time-to-remediate vulnerabilities
  • Support incident response activities and provide documentation and recommendations for security improvements
What we offer
What we offer
  • Health
  • Vision
  • Dental
  • PTO
  • Paid Holiday and Sick Leave if Required by Law
  • Fulltime
Read More
Arrow Right

Vulnerability Research Engineer

Join Socket to build and scale our patching infrastructure that delivers secure,...
Location
Location
United States
Salary
Salary:
Not provided
socket.dev Logo
Socket
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of software engineering experience with production systems
  • Strong proficiency in Node.js, JavaScript, and TypeScript
  • Experience with package managers (npm, yarn, pnpm) and the JavaScript ecosystem
  • Understanding of software security concepts and vulnerability management
  • Experience building and scaling APIs and data processing pipelines
  • Familiarity with automated testing, CI/CD, and deployment systems
Job Responsibility
Job Responsibility
  • Master Socket workflows, tools, and patching processes
  • Lead patching efforts for high-impact vulnerabilities across npm packages
  • Scale patch production to dozens or hundreds of patches per week
  • Help select and prioritize high-value patches
  • Provide technical input on patch prioritization based on ecosystem and customer impact
  • Build and improve automated patching infrastructure and tooling
  • Design and implement scalable patch generation and delivery systems
  • Develop automated vulnerability detection and patch creation workflows
  • Build APIs and integrations to deliver certified packages
  • Create tooling for patch quality assurance and testing
What we offer
What we offer
  • Market competitive salary bands
  • Meaningful equity program
  • Comprehensive health benefits for you and your family
  • Flexible time-off, holidays, and winter shutdown to rest & recharge
  • Paid parental leave
  • Remote-first, with quarterly team off-sites
  • Fulltime
Read More
Arrow Right

Vulnerability Management Engineer

We’re looking for a skilled Vulnerability Management Engineer to play a key role...
Location
Location
United Kingdom , Worcestershire
Salary
Salary:
Not provided
dynamicsearch.co.uk Logo
Dynamic Search Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in vulnerability management, cyber security engineering, or related disciplines
  • Strong understanding of vulnerability scanning, risk-based prioritisation, and remediation workflows
  • Knowledge of IT and OT environments, including DMZ architectures and segmentation principles
  • Familiarity with security frameworks such as NIST and their application in operational environments
  • Experience integrating vulnerability tools with SIEM and orchestration platforms
  • Strong communication skills, with the ability to translate technical risk into operational insight
  • Willingness to engage with sites directly, including on-site assessments where required
Job Responsibility
Job Responsibility
  • Operationalise vulnerability management using a risk-based prioritisation approach
  • Develop and maintain OT site DMZ vulnerability dashboards aligned with NIST frameworks
  • Identify sites operating flat network architectures and assess associated risks
  • Conduct site engagement activities, including on-site visits where required, to validate network and vulnerability findings
  • Enhance operational metrics, reporting, and overall risk visibility across IT and OT estates
  • Automate vulnerability management processes and integrate outputs with orchestration tools and SIEM platforms
  • Assess existing vulnerability management processes and identify gaps in coverage, prioritisation, and reporting
  • Apply risk context to vulnerability data to support meaningful remediation decisions
  • Design and deliver dashboards that provide clear, actionable insight for operational and security stakeholders
  • Work with site and central teams to improve network segmentation and reduce exposure caused by flat networks
Read More
Arrow Right

Threat and Vulnerability Management Engineer

Location
Location
India , Bengaluru
Salary
Salary:
Not provided
cigres.com Logo
Cigres
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 8 years experience in Threats and Vulnerability management in a corporate environment
  • Hands-on expertise operating, integrating Qualys platforms using console, scripting, and automation frameworks
  • Hands-on expertise programming in Python
  • Hands-on experience analysing Vulnerability data for both on-prem, cloud and cloud native environments
  • Have a sense of urgency in production issues and be a proactive speaker and listener
  • Bachelor's degree in cyber security or computer Engineering
Job Responsibility
Job Responsibility
  • Manage Qualys console using various modules
  • Make sure client agent coverage is managed at a good level
  • Support business with Qualys and/or Vulnerability Management requests
  • Understand the current state of the technology components in the IT stack ranging from networking, storage, compute (virtualization, containers), applications & security mgmt
  • Collaborate with team-mates and understand the threats, vulnerabilities, and risks to the enterprise
  • Establish non-production and production environments for testing and hosting the applications
  • Own the end-to-end technical design, unit testing and the maintenance of the hosting environment
  • Adhere to the Scaled Agile Framework methodologies and tools that exists in the environment
  • Participate in daily stand-up sessions of Compliance & Security release train and contribute to bi-weekly sprints
  • Learn System Engineering concepts to analyse existing environment and find more efficient ways
  • Fulltime
Read More
Arrow Right