GatherJob
Back to jobs
S
Securities and Exchange Commission

Vulnerability Management Program Engineer

Securities and Exchange Commission
Washington, District of ColumbiaOn-siteengineering $153k – $259k/yr Today

The Office of Information Technology (OIT) is seeking an IT Specialist (INFOSEC) (Vulnerability Management Program Engineer). As a Vulnerability Management Program Engineer, you will lead enterprise vulnerability lifecycle operations across hybrid, cloud, and modern DevSecOps environments. You will architect, optimize, and operate vulnerability scanning platforms; integrate security tooling into CI/CD pipelines; and drive measurable risk reduction across the enterprise.In this role as a Vulnerability Management Program Engineer, you will be responsible for: Leading enterprise vulnerability management operations from discovery and triage through remediation and validation Engineering and integrating vulnerability management solutions including developing and enforcing automated security gates and policies Analyzing, prioritizing, and driving risk reduction by performing expert analysis of vulnerability data and converting results into actionable remediation guidance Building and maintaining dashboards to measure remediation progress, program maturity, and risk trends Supporting cloud and hybrid network architectures, including troubleshooting complex hybrid issues (TLS/SSL, reverse proxies, segmentation, and distributed scanning nodes) Aligning all vulnerability management operations to internal policies and federal laws, regulations, andrequirements, including NIST SP 800-53, SP 800-137, CIS Benchmarks, DISA STIGs, and FedRAMPrequirements

Opens the company's application page

About the company

Securities and Exchange Commission

Securities and Exchange Commission

Listed via

U

USAJobs

usajobs.gov