Vulnerability Management Engineer – Qualys
GuidePoint Security
full-time
Posted on:
Location Type: Remote
Location: Anywhere in North America
Visit company websiteExplore more
About the role
- Execute and manage vulnerability scanning of internal, external, and cloud assets
- Plan, design, and implement enterprise vulnerability scanning infrastructure in a hybrid or multi-cloud architecture
- Deploy vulnerability management infrastructure such as scanners, sensors, and agent configurations
- Perform vulnerability scanning with the Qualys VMDR
- Analyze vulnerabilities and clearly communicate impact and risk to the organization
- Advise customers on Vulnerability Management best practices
- Development of custom compliance and audit files for Qualys compliance scanning
- Provide guidance and collaborate with peers on the Vulnerability Management practice team
- Establish credibility as a trusted advisor to our customers
Requirements
- 5+ years of information security experience
- 3+ years of vulnerability engineering experience with Qualys REQUIRED
- 3+ years of performing compliance scanning with Qualys (CIS, NIST, DISA)
- Experience developing custom compliance and audit checks with Qualys VMDR REQUIRED
- Must have experience with Qualys.io or Qualys Security Center
- Experience with scripting tasks using native tools such as BASH, PowerShell, Python, or other native scripting languages
- Experience with Regex for data parsing
- Experience with cloud service providers such as Amazon AWS, Microsoft Azure, or Google Cloud Platform.
- Experience with compliance frameworks such as Cis, NIST, DISA Required
- Experience developing Infrastructure as Code, such as Terraform, or Cloud Formation is a plus
- Experience with Kubernetes, containers, Ci/CD or serverless is a plus
- An understanding of operating systems such as Windows Server, Windows 10/7, Mac OSX, RHEL, and Ubuntu Linux and the ability to perform advanced functions at the CLI
- Ability to manage time independently while handling multiple projects concurrently
- Strong written and verbal communication skills
- A strong desire to learn new technologies and contribute to a fast-growing company
Benefits
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
vulnerability scanningvulnerability managementQualys VMDRcompliance scanningcustom compliance checksscriptingRegexInfrastructure as CodeKubernetescloud architecture
Soft Skills
communicationtime managementcollaborationadvisory skillscredibilityindependencedesire to learn