Vaco by HighspringRemote
Security Engineer (Tenable / Purview)
United States
Full Time
2 days ago
00$90 USD
H1B Sponsor Likely
Key skills
PythonPowerShellAnalyticsEntra IDRESTfulServiceNowLeadershipRisk Management
About this role
Vaco by Highspring is currently seeking a Security Engineer (Tenable / Purview) for a 6-month contract opportunity that is 100% remote. The role focuses on managing vulnerabilities using Tenable, optimizing security processes, and supporting various security engineering projects including MS Purview initiatives.
Responsibilities:
- Tenable Platform Engineering - Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
- Vulnerability Remediation Automation - Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
- Vulnerability Reporting / Governance - Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
- Purview DLP Optimization - Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
- Data Protection Architecture - Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
- SIEM / Detection Engineering - Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
- Security Platform Integration - Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
- Knowledge Transfer / Documentation - Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations
Requirements:
- Strong expertise in Tenable Vulnerability Management
- Hands-on work to stabilize and operationalize the vulnerability management process for repeatability and efficiency
- Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
- Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
- Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
- Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
- Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
- Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
- Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
- Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations
- Vulnerability Management Platform - Tenable One (Tenable.io) | Asset Discovery / Policy Creation / Plugin Customization / API Automation / Tenable Lumin Exposure Scoring
- Scanning Infrastructure - Tenable Nessus Scanners (OnPrem / Cloud) / Nessus Agent Deployment at Scale
- SIEM / Security Analytics - Trellix SIEM / Helix (Rule Authoring / Dashboard Creation / Log Source Onboarding / SOAR Playbook Development)
- Automation - PowerShell / Python for Tenable API Automation / Purview Policy Deployment / SIEM Enrichment
- Identity Security - MS Entra ID (Conditional Access / PIM / Identity Protection Features)
- Security Integrations - RESTful API Integration Across Platforms (Tenable / Purview Graph API / Trellix API)
- ITSM Integration - ServiceNow for Vulnerability Ticket Lifecycle Automation
- Risk Scoring / Prioritization (knowledge) - Vulnerability Scoring Frameworks (CVSS 4.0 / EPSS / CISA KEV) / Risk-Based Prioritization Methodologies
- Data Security / Compliance - MS Purview Compliance / Risk Suite (DLP / Sensitivity Labeling / Auto-Labeling / Information Protection [MIP] / Insider Risk Management / Purview Audit)
- Purview Policy Deployment
- Root-Cause Analysis / Configuration Remediation for MS Purview DLP