Were looking for a Senior Vulnerability Management Engineer to play a key role in protecting and strengthening critical systems. This position offers the chance to work on high-impact projects that safeguard government operations, with opportunities to collaborate across technical and compliance teams. Youll be part of a mission-driven environment where your expertise will directly influence security posture and operational resilience.

Location: Washington, D.C. Metro Area or Seaside, CA (hybrid; occasional on-site required)

What youll do

• Support vulnerability remediation efforts for the DMDC IT GEMS engagement
• Apply deep knowledge of Windows OS (Workstation and Server) and foundational knowledge of Linux/UNIX, networking, databases, and IT technologies
• Utilize OS hardening and compliance standards, including DISA STIGs
• Perform analysis and trend reporting of vulnerability scan data, creating weekly metrics for leadership review
• Collaborate with technical and compliance teams to resolve issues and improve processes
• Contribute to DevSecOps initiatives and security automation

Requirements

• 8+ years in the field (58+ years in vulnerability management or security engineering)
• Active Top Secret Clearance
• 8570-compliant certification (e.g., Security+, CISSP)
• Experience with ACAS, PowerShell, Red Hat Advanced Cluster Security for Kubernetes (StackRox), and Splunk
• Strong understanding of Information Assurance Vulnerability Management (IAVM) Program
• Excellent critical thinking, communication, and organizational skills
• Experience in hands-on leadership roles within IT, cybersecurity, or vulnerability management
• Broad security expertise, including vulnerability analysis, risk assessment, and mitigation in government systems