Cloud Vulnerability Remediation Engineer

About The Position

Requirements

• 3 years required: Professional IT experience, with hands-on exposure to cloud infrastructure, system administration, or vulnerability remediation.
• 3 years required: Experience supporting cloud-hosted systems in at least one enterprise cloud environment.
• 3 years required: Understanding of vulnerability remediation concepts, including patching, configuration hardening, and compensating controls.
• 3 years required: Familiarity with IT service management and change management processes.
• 3 years required: Strong analytical, documentation, and organizational skills for tracking vulnerability remediation tasks.
• 3 years required: Ability to follow standardized security procedures for remediation activities.
• 3 years required: Strong communication and collaboration skills to ensure smooth coordination with cross-functional teams.
• Must be able to pass a background check.
• May require additional background checks as required by projects and/or clients at any time during employment.
• Must possess problem-solving skills.
• Exceptional communication skills, both oral and written
• Ability to respond effectively to customers with a sense of urgency.
• Proficient in Microsoft and Adobe toolsets, including Excel, Word, PowerPoint, Acrobat, etc.
• Highly motivated with the ability to handle and manage multiple tasks at any one time.
• Ability to forge new relationships, individual and teaming in nature.
• Must be a Self-starter, that can work independently and as part of a team.

Nice To Haves

• 1 year preferred: Experience with enterprise vulnerability management processes, including understanding service level agreements (SLAs).
• 1 year preferred: Knowledge of cloud security posture management, security baselines, and development of risk reporting.
• 1 year preferred: Possession of relevant cloud or cybersecurity certifications (e.g., AWS Certified Solutions Architect, Microsoft Azure Certification, CISSP).

Responsibilities

• Analyze and review vulnerability findings impacting cloud-hosted resources as identified by approved scanning tools and other monitoring mechanisms.
• Assess the applicability, prioritization, and risk impact of identified vulnerabilities in cloud infrastructure, platform services, and dependent components.
• Implement remediation measures such as security patching, configuration changes, and hardening within required timelines.
• Conduct validation to ensure the successful resolution of identified vulnerabilities and closure of remediation tasks.
• Perform cloud-based patching and update activities for supported workloads using standardized company processes.
• Implement temporary mitigations or compensating controls for vulnerabilities when vendor patches or immediate solutions are unavailable.
• Document and maintain detailed remediation records, including evidence of actions taken, in accordance with compliance and audit requirements.
• Provide regular updates on remediation activities, status, and progress for reporting to leadership, security teams, and auditors.
• Collaborate with cross-functional teams, including Security, Cloud Architecture, and Application Teams, to address complex or multi-platform vulnerabilities.
• Identify recurring vulnerability patterns, bottlenecks in remediation processes, and propose process improvements to streamline operations and enhance the overall security framework.
• Contribute to organizational initiatives aimed at reducing technical debt and enhancing the cloud infrastructure's security and resilience over time.
• Other duties as assigned.

Benefits

• Medical, Dental and Vision Insurance
• Wellness Program
• Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
• Short-Term and Long-Term Disability options
• Basic Life and AD&D Insurance (Company Provided)
• Voluntary Life and AD&D options
• 401(k) Retirement Savings Plan with matching after one year
• Paid Time Off