Title: Senior Vulnerability Management Engineer

Location: "DC Metro" or "Seaside CA" - Occasional visit to Government on-site expected

About iWorks:

iWorks Corporation, founded in 2005, is a leading provider of information technology and professional services to the federal government. We are a recognized leader in personnel security and vetting solutions, Agile, DevOps, DevSecOps, data analytics, and cloud solutions. Our continuous process improvement approach, combined with our business and technology expertise, results in innovative solutions.

We offer exceptional comprehensive benefits (Medical, Dental, Vision, Life and Disability); 401(k); Profit Sharing; Health and Wellness Benefits; and Paid Sick Time, Vacation Time, and Holiday Time. You're eligible for bonuses throughout the year as part of our incentive program for innovation, and business development. All employees are also considered for an annual raise, commensurate with performance and company commitment.

About this position:

We are seeking an experienced and highly skilled Senior Vulnerability Management Engineer to join our Defense Cyber Operations team. This role will support vulnerability remediation efforts for DoD Client, working across Windows, Linux/UNIX, and networking environments. You'll collaborate closely with compliance and engineering teams, perform in-depth vulnerability analysis, and help lead remediation strategies that protect critical government systems.

Salary Range: 125k - 150k - commensurate with candidate's skills, experience, location, and qualifications.

On a day-to-day basis you will :

Perform vulnerability scanning, analysis, and reporting.

Collaborate with technical teams to implement remediation plans.

Apply DISA STIGs, OS hardening, and compliance standards.

Analyze vulnerability trends and prepare weekly leadership reports.

Lead remediation efforts across enterprise systems and applications.

Work with tools such as ACAS, Splunk, and StackRox to identify and mitigate risks.

Required Education/Qualifications

Security Clearance: Top Secret security clearance fully adjudicated.

Certifications: 8570-compliant certification (Security+, CISSP, or equivalent).

Education: Associate degree or higher in Computer Science, Engineering or equivalent field, or equivalent experience/combined education

Experience: 8+ years in vulnerability management or security engineering, with expertise in OS hardening and DISA STIGs.

Preferred Qualifications:

Experience with Red Hat Advanced Cluster Security for Kubernetes (StackRox).

Proficiency with PowerShell scripting.

Working knowledge of the Information Assurance Vulnerability Management (IAVM) Program.

Experience with DevSecOps functionality

Strong critical thinking, organizational, and leadership skills.

Please Note: We maintain an on-camera policy for all virtual company meetings to foster engagement and collaboration. Reasonable exceptions may be granted with prior approval from Human Resources and/or the applicable manager or client .

FLSA & EMPLOYMENT STATUS : FLSA EXEMPT AND FULL-TIME POSITION

iWorks Corporation is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, Veteran status, sexual orientation, or other protected characteristic.

iWorks is committed to maintaining a safe and productive work environment for all employees and ensuring the security and well-being of our clients. As part of our standard hiring process, we may conduct background checks and drug screenings on potential candidates to assess their suitability for employment.