Vulnerability Management Engineer I

Position Summary: 

Reporting to the Manager, Vulnerability Management, the Vulnerability Management Engineer I is responsible for assisting with the development, ongoing operation, and maturity of assigned customers' Vulnerability Management Programs.  You will assist with implementing and troubleshooting scanning technologies to discover and prioritize security flaws for remediation, as well as collaborate with stakeholders to facilitate the remediation and closure of vulnerabilities, and their VM program effectiveness.

On a daily basis, you will be challenged with differing environments, new threats, new ways of tackling problems and identifying solutions to meet the needs of Deepwatch customers.  The standard Vulnerability Management program is an ever evolving world that you can be at the helm of defining.

In this role you’ll get to: 

• Guide customers on their VM program maturity journey, and be the expert they look to for guidance
• Directly impact customer maturity by implementing the best practices based on each customer’s unique environment
• Be involved at a program level with analyzing vulnerabilities and the subsequent remediation plans to ensure the VM program is on track with the Deepwatch vision and needs of the customer
• Perform high level analysis of vulnerabilities to understand how they operate, and affect customer environments
• Create new pathways to maturing a Vulnerability Management program
• Work with the development team to identify new and interesting ways to automate daily tasks

To be successful in this role, you’ll need to: 

• Work with peers to build appropriate program guidance and recommendations
• Enhance customer experience and capabilities through your direction of their VM program maturity journey
• Analyze vulnerabilities and data to determine if their VM solution is working properly and to enhance the customer’s capabilities and the security posture in their environment
• Through analysis and collaboration with your teammates, enhance scanning methodologies and overall visibility in the customer environment while developing new ways of enhancing VM programs
• Apply your knowledge of how an organization currently operates and identify what capabilities are missing, how to enhance current capabilities, or provide solid recommendations on how an organization can and should proceed
• Work with teammates and  customers to get them onboard and up-to-speed with Deepwatch’s VM maturity program by identifying what strategies customers have been using, how effective they have been, and progress they have made.  Analyzing and determining deficiencies and areas for improvement
• Technical Capabilities:
• Vulnerability Management Toolset (Tenable.IO, Tenable.SC, Qualys, Kenna, etc), should have an understanding of how the tools work.  You will eventually be expected to configure, operationalize and export data for customers.
• Nice to have: Code Development (Python, PowerShell, etc.), experience with simple scripting or ability to grow in this skill.  You will get to work with customer configurations, as well as build scripts to handle day-to-day tasks.

ITAR Compliance

“This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following: 

• A citizen of the U.S.;
• A lawful permanent resident of the United States; 
• A person admitted to the United States as a refugee; or
• A person that has been granted asylum by the United States government.”

The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment.”

Colorado* Candidates:

For applicants in Colorado the salary range for this role is $76,000 to $95,000 + stock options + benefits. Actual compensation may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.

*Note: Disclosure as required by sb19-085 (8-5-20)

#LI-KH1