Senior Vulnerability Engineer

Location: Remote (EST)

Employment Type: W2 only

Clearance: Public Trust eligibility required

Job Description

Vulnerability Engineer

Seeking a Senior Vulnerability Engineer to support enterprise vulnerability management, exposure management, compliance auditing, and web application scanning operations across hybrid cloud and on-premises environments. This role is responsible for engineering and optimizing vulnerability management capabilities using Tenable One, Nessus, and Tenable Web App Scanning across AWS cloud infrastructure, operating systems, databases, web applications, and enterprise platforms within a highly regulated federal environment. The ideal candidate will possess strong hands-on experience supporting authenticated and non-authenticated web application scanning, cloud-native asset visibility, compliance auditing, exposure prioritization, and enterprise-scale vulnerability operations.

Key Responsibilities

• Engineer, maintain, and optimize enterprise vulnerability and exposure management platforms using Tenable One, Nessus, and Tenable WAS


• Configure and support authenticated and non-authenticated web application scanning including Selenium-based authentication workflows, session handling, and SSO integrations


• Perform credentialed vulnerability and compliance scanning across Linux, Windows, databases, cloud infrastructure, web applications, and network appliances


• Support continuous attack surface visibility, asset discovery, exposure prioritization, and scalable scan operations across hybrid cloud and multi-tenant enterprise environments


• Troubleshoot complex operational issues involving TLS/SSL negotiation, authentication failures, load balancers, reverse proxies, cloud networking, firewall segmentation, and distributed scanning infrastructure


• Deploy and maintain compliance audit configurations aligned to IRS Safeguards / SCSEM, CIS Benchmarks, National Institute of Standards and Technology SP 800-53, NIST SP 800-115, NIST SP 800-137, DISA STIG, and FedRAMP requirements


• Integrate Tenable platforms with enterprise technologies including CyberArk, Splunk, ServiceNow, and AWS APIs


• Support remediation validation, compliance reporting, audit readiness activities, and operational dashboard development


• Troubleshoot asset correlation and inventory issues involving cloud, virtualized, cloned, and ephemeral infrastructure environments

Required Qualifications

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or related field; equivalent experience may be considered


• 10 years of experience supporting enterprise vulnerability management, exposure management, cybersecurity engineering, or security operations programs


• Hands-on experience with Tenable One, Nessus, Tenable WAS, AWS cloud environments, and enterprise vulnerability management platforms


• Experience supporting authenticated and non-authenticated web application scanning in enterprise environments


• Strong understanding of vulnerability management, exposure management, attack surface visibility, compliance auditing, and cloud-native security concepts


• Familiarity with IRS Safeguards / SCSEM, CIS Benchmarks, National Institute of Standards and Technology guidance, DISA STIG, and FedRAMP compliance frameworks


• Experience supporting enterprise integrations, automation workflows, and operational reporting capabilities


• Strong troubleshooting, analytical, and problem-solving skills across infrastructure, cloud, and application environments


• Project management, workflow, innovation and process improvement, client delivery, solutioning, and consulting skills

Skills

Vulnerability Management, Exposure Management, Tenable One, Nessus, Tenable WAS, Authenticated WAS Scanning, AWS Security & Networking, Compliance Auditing, IRS Safeguards / SCSEM, National Institute of Standards and Technology SP 800-53, NIST SP 800-115, NIST SP 800-137, DISA STIG, FedRAMP, Asset Discovery & Correlation, TLS/SSL Troubleshooting, CyberArk Integration, Splunk, ServiceNow, API Integration & Automation, Python, PowerShell, Ansible, Vulnerability Lifecycle Management, Exposure Prioritization, Compliance Reporting, Audit Readiness Support, Operational Troubleshooting, Remediation Validation, Process Improvement, Cross-Team Coordination, CISA CDM

Dexian stands at the forefront of Talent Technology solutions with a presence spanning more than 70 locations worldwide and a team exceeding 10,000 professionals. As one of the largest technology and professional staffing companies and one of the largest minority-owned staffing companies in the United States, Dexian combines over 30 years of industry expertise with cutting-edge technologies to deliver comprehensive global services and support.

Dexian connects the right talent and the right technology with the right organizations to deliver trajectory-changing results that help everyone achieve their ambitions and goals. To learn more, please visit .

Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.