We're looking for a Senior Vulnerability Management Engineer to play a key role in protecting and strengthening critical systems. This position offers the chance to work on high-impact projects that safeguard government operations, with opportunities to collaborate across technical and compliance teams. You'll be part of a mission-driven environment where your expertise will directly influence security posture and operational resilience.

Location : Washington, D.C. Metro Area or Seaside, CA (hybrid; occasional on-site required)

What you'll do

Support vulnerability remediation efforts for the DMDC IT GEMS engagement Apply deep knowledge of Windows OS (Workstation and Server) and foundational knowledge of Linux/UNIX, networking, databases, and IT technologies Utilize OS hardening and compliance standards, including DISA STIGs Perform analysis and trend reporting of vulnerability scan data, creating weekly metrics for leadership review Collaborate with technical and compliance teams to resolve issues and improve processes Contribute to DevSecOps initiatives and security automation Requirements 8+ years in the field (5-8+ years in vulnerability management or security engineering) Active Top Secret Clearance 8570-compliant certification (e.g., Security+, CISSP) Experience with ACAS, PowerShell, Red Hat Advanced Cluster Security for Kubernetes (StackRox), and Splunk Strong understanding of Information Assurance Vulnerability Management (IAVM) Program Excellent critical thinking, communication, and organizational skills Experience in hands-on leadership roles within IT, cybersecurity, or vulnerability management Broad security expertise, including vulnerability analysis, risk assessment, and mitigation in government systems