Senior Security Engineer (W2 Only)

Cignitix Global is seeking a Senior Security Engineer (Tenable / Purview) for a 6-month contract opportunity that is 100% remote. The role involves managing vulnerability processes, providing information security engineering support, and collaborating with internal teams to enhance security operations while focusing on Tenable and Purview initiatives.

Responsibilities:

• Tenable Platform Engineering – Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
• Vulnerability Remediation Automation – Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
• Vulnerability Reporting / Governance – Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
• Purview DLP Optimization – Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
• Data Protection Architecture – Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
• SIEM / Detection Engineering – Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
• Security Platform Integration – Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
• Knowledge Transfer / Documentation – Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations

Requirements:

• Strong expertise in Tenable Vulnerability Management
• Hands-on work to stabilize and operationalize the vulnerability management process for repeatability and efficiency
• Provide broad information security engineering support across multiple 2025 roadmap projects involving security tooling
• Work closely and collaboratively with internal leads to supplement the existing team capacity
• Tenable Platform Engineering – Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
• Vulnerability Remediation Automation – Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
• Vulnerability Reporting / Governance – Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
• Purview DLP Optimization – Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
• Data Protection Architecture – Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
• SIEM / Detection Engineering – Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
• Security Platform Integration – Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
• Knowledge Transfer / Documentation – Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations
• Vulnerability Management Platform – Tenable One (Tenable.io) | Asset Discovery / Policy Creation / Plugin Customization / API Automation / Tenable Lumin Exposure Scoring
• Scanning Infrastructure – Tenable Nessus Scanners (OnPrem / Cloud) / Nessus Agent Deployment at Scale
• SIEM / Security Analytics – Trellix SIEM / Helix (Rule Authoring / Dashboard Creation / Log Source Onboarding / SOAR Playbook Development)
• Automation – PowerShell / Python for Tenable API Automation / Purview Policy Deployment / SIEM Enrichment
• Identity Security – MS Entra ID (Conditional Access / PIM / Identity Protection Features)
• Security Integrations – RESTful API Integration Across Platforms (Tenable / Purview Graph API / Trellix API)
• ITSM Integration – ServiceNow for Vulnerability Ticket Lifecycle Automation
• Risk Scoring / Prioritization (knowledge) – Vulnerability Scoring Frameworks (CVSS 4.0 / EPSS / CISA KEV) / Risk-Based Prioritization Methodologies
• Data Security / Compliance – MS Purview Compliance / Risk Suite (DLP / Sensitivity Labeling / Auto-Labeling / Information Protection [MIP] / Insider Risk Management / Purview Audit)
• Purview Policy Deployment
• Root-Cause Analysis / Configuration Remediation for MS Purview DLP