Exegy

Security Engineer – Attack Surface Management

Exegy

full-time

Posted on:

Location Type: Hybrid

Location: St. LouisMontanaUnited States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

Cloud

About the role

  • Own the end-to-end vulnerability lifecycle: discovery, prioritization, remediation tracking, and validation
  • Maintain accurate asset and exposure visibility across endpoints, servers, cloud workloads, SaaS, and internet-facing systems
  • Perform regular vulnerability scanning and ad-hoc assessments
  • Prioritize remediation based on real-world risk, considering:
  • - Exploitability and threat intelligence
  • - Asset criticality and business impact
  • - Exposure (internet-facing, privileged systems, sensitive data)
  • Reduce vulnerability noise by deduplicating findings and focusing teams on what matters most
  • Track remediation progress and validate fixes
  • Identify and eliminate unmanaged or unknown assets, legacy systems with chronic vulnerabilities, and misconfigurations that expand attack surface
  • Partner with IT and Engineering to improve patching cadence
  • Conduct targeted threat analysis and light threat hunting to identify exploitation attempts and abnormal authentication or privilege activity
  • Work closely with IT, Engineering, and Infrastructure teams to drive remediation outcomes

Requirements

  • 3+ years of hands-on experience in security engineering, vulnerability management, or a closely related discipline
  • Strong working knowledge of common vulnerability classes, exploitation techniques, and attacker methodologies
  • Solid foundation in operating systems, networking concepts, and cloud fundamentals
  • Experience using vulnerability scanning, detection, and security monitoring tools to identify and assess risk
  • Demonstrated ability to prioritize remediation efforts based on business and technical risk rather than raw finding volume
Benefits
  • Health insurance
  • Retirement plans
  • Paid time off
  • Flexible work arrangements
  • Professional development
  • Bonuses

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
vulnerability managementvulnerability scanningthreat analysisremediation trackingrisk assessmentexploitability analysisnetworking conceptsoperating systemscloud fundamentalssecurity monitoring
Soft skills
prioritizationcollaborationcommunicationproblem-solvinganalytical thinking