Senior Information Security Engineer – Thread & Vulnerability Management

Role Overview

• Administer and maintain vulnerability scanning platforms including Rapid7 InsightVM, Qualys, and Wiz across on-prem and cloud environments
• Build and maintain PowerBI dashboards and reports to communicate vulnerability posture, scan coverage trends, SLA compliance, and remediation progress to technical and executive audiences
• Write and optimize SQL (PostgreSQL) for data analysis, reporting views, stored procedures, and snapshot/trending
• Coordinate with asset owners and IT teams to drive remediation of identified vulnerabilities within defined SLAs
• Contribute to process documentation, runbooks, and continuous improvement of TVM program maturity

Requirements

• Bachelor's degree in IT, Security, Business, or CS
• 3 years of experience in Information Security, Technology, Risk, or Compliance
• SQL database management experience
• 4 years experience in Information Security, Technology, Risk, or Compliance (preferred)
• Additional certifications: CISSP, CISM, CISA, GDSA, CISSP-ISSAP, or equivalent
• Experience with penetration testing tools and methodologies
• Familiarity with scripting (Bash, Python) for automation and data processing

Tech Stack

• Cloud
• Postgres
• Python
• SQL

Benefits

• Healthcare (Medical, Dental, Vision)
• Paid Time Off, Volunteer Time Off, and Holidays
• Employer-Matched Retirement Plan
• Employee Stock Purchase Plan
• Short-Term and Long-Term Disability
• Infertility Treatment, Adoption and Surrogacy Assistance
• Tuition Reimbursement