Senior Exposure Management Engineer, IS Security, Days, Fully Remote

Norton Healthcare is a leading organization in the healthcare sector, and they are seeking a Senior Exposure Management Engineer to lead the development of risk-based exposure models. This role involves integrating vulnerability data, automating workflows, and enhancing asset intelligence to manage cybersecurity risks effectively.

Responsibilities:

• The Sr Exposure Management Engineer leads the development of risk-based exposure models and the integration of vulnerability, asset and detection telemetry across Norton Healthcare’s hybrid environment
• This role creates prioritization logic, automates workflows, correlates threat intelligence with asset data, and works with engineering and detection teams to reduce real-world risk
• The engineer evaluates vulnerabilities through a threat-informed lens, incorporating asset criticality, exploitability, detection coverage and business impact
• The Sr Exposure Management Engineer drives automation, enhances asset intelligence, supports incident response with exposure context, and advances the maturity of the exposure management program

Requirements:

• Five years of experience in cybersecurity vulnerability management, detection engineering or threat intelligence, with demonstrated experience correlating exposure data across multiple platforms
• Strong understanding of vulnerability scoring systems (CVSS, EPSS), exploit data sources, asset classification, detection telemetry and hybrid infrastructure
• Experience with automation, scripting or data modeling (Python, PowerShell, KQL, or similar)
• Bachelor degree in cybersecurity, computer science or equivalent experience
• Seven years of the above
• SC-100, GSOA or GOSI, CISSP, Relevant vendor or platform certifications