Vulnerability Management Engineer

About The Position

Requirements

• Must be a U.S. Citizen with the ability to obtain a Public Trust clearance.
• Bachelor’s degree with four (4) or more years of related experience, or a Master’s degree with two (2) or more years of related experience.
• Strong technical experience with Red Hat Enterprise Linux and Windows Server.
• Hands-on experience with AWS and Azure cloud environments.
• Ability to interpret Tenable Nessus scan results and translate them into actionable remediation steps.
• Experience remediating OS-level vulnerabilities, configuration weaknesses, and cloud-related findings.
• Working knowledge of TCP/IP networking fundamentals.
• Strong understanding of security hardening principles, STIGs, CIS Benchmarks, and secure configuration practices.

Nice To Haves

• CySA+, CEH, Azure Security Engineer, AWS Security Specialty, or similar certification.
• Experience with automation tools such as Terraform, Ansible, or cloud-native configuration services.

Responsibilities

• Interpret and analyze vulnerability results from tools such as Tenable Nessus to assess risk, identify remediation paths, and drive POA&Ms to closure.
• Utilize deep technical skills to log into affected systems and directly address complex vulnerabilities across Red Hat Enterprise Linux and Windows Server workloads.
• Coordinate closely with system owners, engineering teams, and cloud platform teams to implement mitigations with minimal turnaround time.
• Apply strong understanding of cloud security best practices across AWS and Azure environments.
• Use comprehensive knowledge of operating system internals to resolve non-standard or configuration-based vulnerabilities.
• Develop, track, and validate remediation plans for findings that require configuration changes, service adjustments, or architectural modifications.
• Monitor remediation progress, identify blockers, and ensure accurate and timely documentation in accordance with program requirements.
• Provide technical support and troubleshooting related to vulnerability remediation activities.
• Work with engineering staff to validate fixes, retest findings, and ensure vulnerabilities do not reoccur.
• Participate in continuous improvement of vulnerability management processes, reporting, and operational readiness.
• Work closely with the program’s Information System Security Officer (ISSO) to coordinate vulnerability remediation activities, POA&M management, and continuous monitoring.
• Align vulnerability remediation efforts with RMF and ATO requirements in coordination with the ISSO.
• Serve as a backup to the ISSO, providing continuity of security and compliance operations as needed.
• Support preparation and updates of security documentation inputs, including POA&M updates and assessment artifacts, related to vulnerability findings.

Benefits

• T-Rex has made a commitment to maintain the status of an industry leader in compensation packages and benefits which includes competitive salaries, performance bonuses, training and educational reimbursement, Transamerica 401(k) and Cigna healthcare benefits.
• PTO available to use immediately upon joining (prorated based on start date), paid parental leave, individual and family health, vision, and dental benefits, annual budget for training, professional development and tuition reimbursement, and a 401(k) plan with company match fully vested after 60 days of employment among other benefits.