Vulnerability Detection & Remediation Engineer

Description :

- Perform regular vulnerability scans using tools such as Qualys, Tenable Nessus, and Rapid7.

- Analyze scan findings, validate risks, and drive remediation plans with cross-functional teams.

- Work closely with IT, DevOps, application, and cloud teams to ensure timely patching and

vulnerability closure.

- Hands-on management of patching activities across operating systems, applications, cloud

platforms, and network devices.

- Develop and maintain vulnerability management policies, SOPs, playbooks, and remediation

workflows.

- Provide SME guidance on scanning signatures, detection logic, risk scoring, and remediation

best practices.

- Correlate threat intelligence feeds with internal scan data to evaluate exploitability and

business risk.

- Facilitate remediation review meetings with stakeholders and track action closure.

- Ensure alignment with security and compliance frameworks such as NIST, ISO 27001, PCI-DSS, and HIPAA.

- Create executive-level dashboards, trend reports, and remediation status updates.

- Support incident response and threat hunting teams with vulnerability exploitation insights.

- Drive process improvements using automation and orchestration tools such as ServiceNow,

Microsoft Sentinel, Ansible, Terraform, and Splunk Phantom.

Required Experience & Qualifications :

- Bachelors degree in Computer Science, Information Security, or a related discipline

- 5+ years of experience in vulnerability management, security operations, or cybersecurity

- Strong expertise in Windows, Linux, networking protocols, and cloud security

Hands-on experience with vulnerability management tools :

1. Qualys VMDR

2. Tenable.io / Nessus

3. Rapid7 InsightVM

Experience with patch management platforms such as :

1. Intune

2. WSUS

3. Patch My PC

4. Automox

5. Qualys Patch Management

- Strong analytical, communication, stakeholder management, and troubleshooting skills