Senior Vulnerability Management Engineer – Active Secret Clearance
Location
United States
Posted
1 day ago
Salary
$145K - $170K / year
Seniority
Senior
Job Description
Senior Vulnerability Management Engineer – Active Secret Clearance
PGTEK
• Administer and optimize the full Tenable platform, including: - Tenable.sc - Tenable Vulnerability Management (formerly Tenable.io) - Nessus - Nessus Agents • Perform authenticated and unauthenticated vulnerability scans across Windows, Linux, network, and cloud environments. • Analyze vulnerability data, validate findings, eliminate false positives, and prioritize remediation efforts based on risk. • Coordinate remediation activities with infrastructure, networking, and application teams through closure. • Manage scan schedules, repositories, credentials, scan zones, and agent deployments. • Troubleshoot scanning issues, credential failures, performance bottlenecks, and platform health. • Develop executive dashboards, compliance reports, and security metrics. • Support RMF continuous monitoring, POA&M management, and audit activities. • Integrate Tenable with ServiceNow, SIEM, asset management, and automation platforms. • Develop automation using PowerShell, Python, Bash, and Tenable APIs. • Recommend system hardening improvements and security best practices. • Provide technical mentorship to junior engineers and vulnerability analysts. • Support security investigations and incident response activities requiring vulnerability analysis.
Job Requirements
- 7+ years of cybersecurity engineering, vulnerability management, or systems engineering experience.
- Experience supporting Federal Government or DoD environments (5+ years preferred).
- Active Secret Clearance (TS/SCI preferred).
- Deep experience administering:
- Tenable.sc
- Tenable Vulnerability Management
- Nessus
- Nessus Agents
- Strong understanding of vulnerability management lifecycle and remediation processes.
- Experience with:
- CVSS scoring
- Known Exploited Vulnerabilities (KEV)
- Patch management
- STIG compliance scanning
- False-positive validation
- Working knowledge of:
- Windows Server
- Linux (RHEL, CentOS, Ubuntu)
- VMware vSphere
- AWS and/or Azure
- Enterprise networking (TCP/IP, DNS, VLANs, routing, switching)
- Compliance ExperienceExperience supporting one or more of the following:
- NIST SP 800-53
- Risk Management Framework (RMF)
- DISA STIGs and SRGs
- CMMC
- CIS Benchmarks
- DoD 8570 / 8140 requirements
- Preferred Skills
- PowerShell, Python, or Bash scripting
- Tenable API development and automation
- ServiceNow or Jira integration
- SIEM and SOAR platforms
- Executive reporting and security metrics
- Experience improving vulnerability remediation processes and reducing MTTR
Related Guides
Related Job Pages
More Full-stack Engineer Jobs
• Design and implementation of applications, data integrations, and technology solutions • Development oversight and standards adherence • Provide technical guidance and mentoring to Developers, Sr. Developers, and Technical Leads • Create Design & Technical Specs from Business requirement specifications • Lead and participate in code reviews • Collaborate with various teams to ensure delivery of projects
• Lead collaboration within your engineering team, QA, and Product, facilitating discussions and ensuring effective communication • Mentor junior and mid-level engineers, guiding technical approaches, design patterns, and best practices • Conduct peer reviews of code, promoting engineering excellence and maintaining high code quality standards across the team • Own feature design and implementation end-to-end, ensuring solutions are robust, scalable, and maintainable • Develop new features at a high level of quality, delivering thoroughly tested and production-ready code • Design, document, and communicate system solutions, ensuring a balanced approach to time, quality, cost, and performance • Champion modern software development practices, including Test Driven Development, continuous integration, and deployment • Continuously develop your business domain knowledge and understanding of the business and the mutual funds industry • Contextualise your technical work for less technical members of the organisation, bridging the gap between engineering and business teams.
Software Engineer – Technical Specialist
KyndrylWe design, build, manage and modernize the mission-critical technology systems that the world depends on every day.
• Develop solutions in specific domains such as Security, Systems, Databases, Networking Solutions, and more • Contribute knowledge, guidance, technical expertise, and team leadership skills • Communicate complex technical and business concepts to customers and team members • Integrate with other layers and offerings for delivering high-quality products • Coach and mentor engineers to design and implement highly available, secure, distributed software in a scalable architecture
• Take end-to-end ownership of new features, working with others in the Nexus and OSS teams to deliver exceptional reliability and a great developer experience. • Design and build Nexus interfaces for the Temporal SDKs used by customers to work with Temporal in their programming language of choice. • Tightly integrate Temporal SDKs with their respective languages, making best use of type systems and language runtimes, to execute application code in a durable, deterministic way. • Develop features that provide a foundation for the reliable execution of the current wave of agentic AI systems. • Work directly with our community to debug issues that need expert attention, and get feedback on Temporal SDK features and APIs. • Write publicly-readable technical documentation describing Temporal concepts and APIs. • Travel to meet your coworkers for a week once or twice a year.




