The
Security Engineer, Vulnerability & Attack Surface Management operates across the full vulnerability lifecycle. You will act as the technical engine of the VM program, transforming it from a reactive process into a proactive, intelligence-driven capability. By embedding AI across scanning, triage, and remediation, you will ensure high-risk vulnerabilities are addressed before exploitation across IT, cloud, and OT-adjacent environments.
What you will do:AI-Driven Scanning & Prioritization- Design and operate AI-augmented vulnerability scanning pipelines across IT, cloud, and hybrid environments.
- Deploy and tune AI-driven prioritization models combining CVSS, EPSS, CISA KEV, threat intelligence, and asset criticality.
- Correlate vulnerability data with live threat intelligence and active exploit activity to keep prioritization models current and accurate.
Automated Remediation & Workflows- Build and maintain automated remediation workflows, including AI-generated ticket creation and resolution tracking through ITSM platforms.
- Monitor SLA compliance across workflows using automated alerting and predictive SLA breach detection.
- Produce AI-generated operational dashboards and executive reporting to translate raw vulnerability data into clear risk narratives.
Attack Surface & Asset Management- Maintain asset inventory accuracy and CMDB integrations, using AI-assisted asset discovery to identify shadow IT and coverage gaps.
- Contribute to attack surface management using AI-powered exposure analysis to map external trends and model risk reduction scenarios.
- Support exception documentation and compensating control tracking through structured, audit-ready workflows.
Tools & Technologies:- Scanning Platforms: Tenable Nessus, Qualys VMDR, Rapid7 InsightVM, or Microsoft Defender Vulnerability Management.
- Risk Scoring: CVSS v3/v4, EPSS, CISA KEV, and asset-criticality-based prioritization frameworks.
- ASM Platforms: Cortex Xpanse, Microsoft Defender EASM, or Axonius.
- Scripting & ITSM: ServiceNow, Jira, Python, and PowerShell.
What you bring:- Experience: 4-6+ years in cybersecurity with a primary focus on vulnerability management, attack surface management, or security operations.
- Certification: Security+ or GEVA preferred; vendor certifications (Tenable, Qualys) or AI/ML security coursework are a strong plus.
- Communication: Strong analytical skills with the ability to translate AI-generated vulnerability insights into risk narratives for technical teams and executive stakeholders.
- Collaboration: Effective at driving remediation velocity across IT, cloud, and application teams using data to influence prioritization.
