Security Vulnerability Engineer

Job Description Cradlepoint is seeking a highly motivated Security Vulnerability Engineer to join our dedicated security team. This pivotal role is responsible for the end-to-end vulnerability management practice, encompassing identifying, researching, prioritizing, remediating, and mitigating vulnerabilities. You will work alongside a highly skilled and diverse team, ensuring the continuous security and integrity of our information assets. We are looking for a proactive individual who values collaboration, continuous learning, and driving impactful security improvements. What You Will Do: Key Responsibilities - Perform daily operations and maintenance of vulnerability scanning tools and their supporting infrastructure. - Register assets in the scanning tool and execute scans according to the agreed schedule. - Conduct comprehensive Vulnerability Management, including supporting scan tools, executing vulnerability scans, performing analysis, and recommending/tracking mitigations. - Perform periodic validation of assets through the Central Depository. - Register assets in scanning tool and perform periodic scans to ensure continuous coverage. - Perform, review, and analyze security vulnerability data & CIS Hardening data to identify applicability and false positives, recommending corrective actions for mitigation. - Publish reports on identified security vulnerabilities & CIS Hardening, as well as control gaps identified during security control reviews, as per the defined schedule. - Overall responsibility for governance and tracking of the Vulnerability Remediation action plan. - Maintain a risk register for exploitable vulnerabilities and discuss remediation strategies with stakeholders. - Act on after-hours (on-call support) for IT security incidents as required. - Analyze results of Web application assessments and provide executive reports with recommendations for mitigation. - Manage tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology developers and support teams. - Assist in metrics development and reporting for vulnerability management activities. - Devise methods to automate testing activities and streamline testing processes. - Provide oral briefings to leadership and technical staff, as necessary. - Support and run vulnerability management scans of customer systems (using tools like Tenable Nessus, Qualys, etc.). - Plan and coordinate vulnerability scanning schedules with customers and stakeholders. Required Qualifications - Education: Bachelor's Degree (B.E./B.Tech) in Computer Science or a related field. - Experience: 8-10 years in a relevant security role. - Solid understanding of security controls (e.g., Access Control, auditing, authentication, encryption, integrity, physical security, and application security). - Working knowledge of scanning tools such as Nessus, Qualys, Netsparker, Fortify, etc. - Strong understanding of enterprise, network, system, and application-level security issues. - Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks, including available security controls (technical & process controls) for respective layers. - Experience writing technical reports and executive summaries. - The ability to provide support after normal business hours. - The ability to work constructively under pressure. - Ability to work both in a team as well as individually. - Participate in the out-of-hours on-call rotation, providing technical support to the business for major and critical incidents. - Strong Knowledge Sharing and Collaboration skills. - Ability to deliver results and meet customer expectations. - Excellent communication skills; English is a must.