GuidePoint Security

Senior Vulnerability Management Engineer – Southwest Region

GuidePoint Security

full-time

Posted on:

Location Type: Remote

Location: Remote • California • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

CloudJamfLinuxMacOSPerlPythonServiceNow

About the role

  • Implement, configure, tune, and operationalize client vulnerability assessment tools across traditional and cloud environments.
  • Assist with the creation, maturation, and enhancement of Vulnerability Management program documentation, workflows, and governance structures.
  • Perform Vulnerability Management gap analysis to identify process, tooling, or coverage deficiencies.
  • Interpret vulnerability findings and provide clear technical and non-technical risk narratives tailored to various stakeholders.
  • Develop remediation strategies, including technical patching paths, hardening recommendations, and compensating controls where necessary.
  • Implement and operationalize advanced risk-based VM reporting platforms (e.g., Kenna, Nucleus, Brinqa, Vulcan).
  • Design and deploy custom dashboards and reporting views to improve transparency, KPIs, and executive-level VM insights.
  • Provide expert advisory guidance on Vulnerability Management best practices and industry standards.
  • Serve as project lead on VM engagements and act as an escalation point for other engineers within the practice.
  • Assist customers with the use of VM tooling and reporting features, including ServiceNow integration support.
  • Collaborate closely with vendor partners to troubleshoot and escalate technical issues.
  • Conduct continual self-driven learning to stay ahead of evolving trends, technologies, and threat landscapes.
  • Support application security needs when required, including coordinating DAST tooling for dynamic analysis.

Requirements

  • Experience with major enterprise scanning platforms such as Qualys, Tenable, Rapid7, with cloud-native platforms such as Wiz, Orca, Prisma Cloud, Aqua, Lacework strongly preferred.
  • Experience deploying, tuning, and troubleshooting assessment tools in large, complex, and segmented network environments.
  • Hands-on experience with Kenna Security, Nucleus, Brinqa, Vulcan, or similar enterprise reporting tools.
  • Ability to perform basic scripting and automation using PowerShell, Bash, Python, or Perl.
  • Working knowledge of Windows Server, Windows 10/11, MacOS, RHEL, and Ubuntu Linux, including CLI proficiency.
  • Strong understanding of networks, protocols, segmentation, and enterprise architectures.
  • Understanding of common vulnerability classes (e.g., OWASP Top 10) and how vulnerabilities are exploited.
  • Experience applying and recommending CIS benchmarks, NIST, and other hardening standards.
  • Familiarity with tools such as Nessus, Nmap, Burp Suite, Netsparker, WebInspect, Metasploit, Core Impact, etc.
  • Experience with enterprise configuration and deployment tools (SSM, JAMF, BigFix, Tanium).
  • Understanding of system design, asset management challenges, and VM operational constraints.
  • Strong written and verbal communication skills, with the ability to distill complex data into executive-ready insights.
  • Ability to manage multiple projects independently while maintaining strong customer rapport.
  • Comfortable acting as a project lead and SME for both customers and internal teammates.
  • High degree of motivation, curiosity, and commitment to continuous learning.
  • Bachelor’s degree in Computer Science, Engineering, Information Security, Information Systems, or related discipline preferred.
Benefits
  • Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
  • Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
  • Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
  • 12 corporate holidays and a Flexible Time Off (FTO) program
  • Healthy mobile phone and home internet allowance
  • Eligibility for retirement plan after 2 months at open enrollment
  • Pet Benefit Option

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
vulnerability assessmentgap analysisremediation strategiesscriptingautomationnetwork protocolsvulnerability classeshardening standardssystem designasset management
Soft skills
communicationproject managementcustomer rapportleadershipself-driven learningcollaborationproblem-solvingadaptabilitytechnical advisoryinsight distillation
Certifications
CIS benchmarksNIST