Vulnerability Management Engineer

About The Position

Requirements

• 3–5 years of experience in Infrastructure Security with exposure to vulnerability management and OS hardening in Linux environments (e.g., RHEL, Ubuntu).
• Working knowledge of OS vulnerability and configuration lifecycle management, patch processes
• Deep familiarity with CIS Benchmarks or equivalent standards.
• Familiarity with CI/CD pipelines, containerized environments (Docker/Kubernetes), and leveraging security checks integrated into automated workflows.
• Scripting proficiency in Python, Bash, or PowerShell for automating scanning, remediation, or compliance validation tasks.
• Strong analytical and problem-solving skills with attention to detail in identifying and prioritizing security risks.
• Ability to work cross-functionally across global teams and effectively communicate technical security information.

Nice To Haves

• Experience integrating OS hardening with CI/CD pipelines and Infrastructure-as-Code environments.
• Understanding cloud-native hardening guidelines (AWS, GCP, Azure)
• Experience using ServiceNow, including features (related to Vulnerability Response and Orchestration) within ServiceNow is highly preferred
• Experience with Data Analytics platforms (Splunk etc.) is desirable.

Responsibilities

• Develop, maintain, and implement secure OS baseline configurations aligned with CIS benchmarks and internal security standards.
• Partner with Platform, Cloud, and ECD teams to integrate OS hardening controls into infrastructure build and deployment pipelines.
• Automate OS hardening implementation using Ansible or Terraform, and validate enforcement through compliance scanning.
• Continuously monitor and assess systems for configuration drift, unauthorized changes, or deviations from security baselines.
• Collaborate with Compliance teams to ensure hardening standards address emerging threats and regulatory requirements.
• Provide remediation guidance to system administrators and application owners on secure configuration practices.
• Measure and report on hardening coverage, compliance rates, and drift metrics (KPIs/KRIs) to leadership.

Benefits

• The total compensation package for this position may also include other elements, including a target bonus and restricted stock units (as applicable) in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as PTO and parental leave).
• Details of participation in these benefit plans will be provided if an employee receives an offer of employment.