Key skills
PythonPowerShellAnalyticsEntra IDRESTfulServiceNowLeadershipRisk Management
About this role
Cignitix Global is a leading IT consulting and workforce fulfillment firm, providing innovative solutions to businesses and government organizations. They are seeking a Security Engineer (Tenable / Purview) to enhance vulnerability management processes and support various security initiatives across multiple projects.
Responsibilities:
- Tenable Platform Engineering – Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
- Vulnerability Remediation Automation – Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
- Vulnerability Reporting / Governance – Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
- Purview DLP Optimization – Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
- Data Protection Architecture – Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
- SIEM / Detection Engineering – Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
- Security Platform Integration – Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
- Knowledge Transfer / Documentation – Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations
Requirements:
- Vulnerability Management Platform – Tenable One (Tenable.io) | Asset Discovery / Policy Creation / Plugin Customization / API Automation / Tenable Lumin Exposure Scoring
- Scanning Infrastructure – Tenable Nessus Scanners (OnPrem / Cloud) / Nessus Agent Deployment at Scale
- SIEM / Security Analytics – Trellix SIEM / Helix (Rule Authoring / Dashboard Creation / Log Source Onboarding / SOAR Playbook Development)
- Automation – PowerShell / Python for Tenable API Automation / Purview Policy Deployment / SIEM Enrichment
- Identity Security – MS Entra ID (Conditional Access / PIM / Identity Protection Features)
- Security Integrations – RESTful API Integration Across Platforms (Tenable / Purview Graph API / Trellix API)
- ITSM Integration – ServiceNow for Vulnerability Ticket Lifecycle Automation
- Risk Scoring / Prioritization (knowledge) – Vulnerability Scoring Frameworks (CVSS 4.0 / EPSS / CISA KEV) / Risk-Based Prioritization Methodologies
- Data Security / Compliance – MS Purview Compliance / Risk Suite (DLP / Sensitivity Labeling / Auto-Labeling / Information Protection [MIP] / Insider Risk Management / Purview Audit)
- Purview Policy Deployment
- Root-Cause Analysis / Configuration Remediation for MS Purview DLP