Senior Vulnerability Management Specialist

TEKsystems•Berwyn, IL

3d•Remote

About The Position

We are seeking a highly skilled Senior Vulnerability Management Engineer to stabilize and mature a rapidly evolving vulnerability management function. This individual will serve as the technical expert, helping re‑establish operational health, drive automation, and build the next generation of our vulnerability management program. This role is ideal for someone with deep engineering experience in modern SaaS environments, strong automation skills, and Senior level expertise. The new hire is expected to be a Senior engineer, driving automation initiatives and mentoring junior team members, similar to the departing resources. You will help establish hardened, standardized, and measurable endpoint security foundations that reduce risk while preserving productivity, partnering closely with IT and Security teams to deliver securebydefault device experiences. Current Tools: The team uses three instances of Tenable (including an on-prem Tenable SC) for vulnerability management and Aqua Security for container scanning. Automation Goals: Success in automation for this team means processes run autonomously in the background with observability, alerting only when attention is needed, thereby eliminating manual intervention. The main operational burden to automate is the vulnerability ticket lifecycle (creation, verification, closure) and manual tasks like risk acceptance and answering team questions. Observability & Scanning: aims to improve automation around observability to ensure 100% scanning coverage, no missed assets, and robust alerting if their in-house ticket creation automation fails. Vulnerability Response: A key automation desire is an in-house tool to quickly check multiple security tools for CVE impact when critical vulnerabilities are announced.

Requirements

Deep experience in vulnerability management engineering within modern SaaS or software companies (not just legacy corporate IT).
Strong knowledge of Kubernetes, containers, CI/CD pipelines, and cloud platforms.
Proven ability to automate workflows using Python or PowerShell.
Ability to function as a high-level IC, Senior advisor, and technical lead.
Comfortable working in a dynamic environment undergoing operational repair and modernization.
Strong communication and ability to influence engineering teams.

Nice To Haves

Experience securing cloud-native applications / SaaS solutions and networks.
Familiarity with vulnerability scanning and threat protection.
Microsoft Certified: Azure Security Engineer Associate (AZ-500).
Microsoft Certified: Identity and Access Administrator Associate (SC-300).
Knowledge of Zero Trust principles and compliance standards (e.g., GDPR, HIPAA).
Exposure to other cloud platforms (AWS, GCP).
Eagerness to learn across engineering and security.

Responsibilities

Serve as the Senior-most technical authority for vulnerability management, working as an advanced IC with the influence of a consulting director.
Lead engineering efforts across: SaaS, cloud-first environments, Kubernetes, containers, and microservices, Azure or AWS-based workloads, Traditional servers, endpoints, and corporate infrastructure.
Rebuild operational processes and reduce manual workload through Python and/or PowerShell automation.
Partner with leadership to implement the long-term vulnerability management roadmap.
Mentor junior analysts and elevate team maturity without direct personnel management responsibilities.
Evaluate tooling, help define future-state architecture, and drive cross-team alignment.
Work closely with security engineering, infrastructure, and cloud engineering teams.