Vulnerability Management Engineer

Position: Vulnerability Management Engineer

Type: Full Time

Location: Remote, Canada

Salary Range: $100k CAD per annum

CYBERWELL is the new name behind North America’s most trusted cybersecurity brands. We are scaling our impact with a refreshed vision and renewed commitment to helping organizations build lasting resilience in today’s evolving threat landscape. CYBERWELL delivers integrated solutions across the full cybersecurity lifecycle, from offensive security exposure management to GRC, architecture and engineering, threat intelligence, and 24/7 managed detection and response. We partner with enterprise leaders to navigate regulatory pressure, evolving risk, and growing infrastructure.

We help organizations protect what matters most, stay ahead of threats, and build the foundation for long-term success. We are focused on outcomes and dedicated to our customers’ success.

We are seeking a highly skilled Security Engineer with a strong background in vulnerability management, IT service management (ITSM), and organizational change leadership. The ideal candidate will hold a CISSP or equivalent certification, have hands-on experience with Qualys or a comparable vulnerability management platform, and demonstrate the ability to lead technical and cultural change initiatives across complex enterprise environments. This role will support cybersecurity maturity initiatives, integrate vulnerability management into operational workflows, and enable sustainable change through cross-functional collaboration.

• Operate and tune Qualys or equivalent platforms to continuously assess vulnerabilities across cloud and on-prem environments.
• Interpret scan results, prioritize findings using risk-based methodologies (CVSS, threat intel), and coordinate remediation efforts.
• Integrate vulnerability data into SIEM and ITSM platforms to drive operational awareness.
• Contribute to the tuning and optimization of SIEM platforms (e.g., Sentinel, Splunk).
• Provide security engineering support for Azure-based workloads (e.g., Identity Protection, Conditional Access, Defender for Cloud).
• Support infrastructure teams in hardening configurations, implementing least privilege, and integrating detection/prevention technologies.
• Lead or support the design and rollout of security workflows within ITSM platforms (e.g., ServiceNow, Jira Service Management).
• Partner with IT, SecOps, and business stakeholders to drive cultural adoption of security hygiene and policy adherence.
• Advocate for security enablement over enforcement; build buy-in through education, engagement, and visibility.

• 5+ years of professional experience in IT, security engineering, or related roles.
• CISSP or equivalent security certification (e.g., CISM, SSCP).
• Proficiency with vulnerability management tools such as Qualys, Tenable, or Rapid7.
• Hands-on experience with ITSM frameworks and tools, and demonstrated leadership in change adoption or process transformation.
• Experience with SIEMs, especially in tuning rules, creating detections, and managing logs.
• Strong understanding of Azure security and identity controls.
• Excellent verbal and written communication skills; capable of bridging technical and non-technical stakeholders.

• Microsoft certifications such as SC-100, SC-300, SC-401.
• Experience supporting cloud-first or hybrid environments.
• Familiarity with frameworks such as NIST CSF, MITRE ATT&CK, CMMI, or Zero Trust.
• Ability to build automated reporting or dashboards to track posture over time.

The salary offered for this position falls within a specified salary range and will be determined based on a variety of factors, including but not limited to the candidate's experience, qualifications, skills, and the specific needs of the organization. We believe in fair and equitable compensation and aim to offer a competitive salary that reflects the value and expertise of the selected candidate. We are committed to supporting a diverse, inclusive, and accessible workplace. We welcome and celebrate the diversity of applicants and team members across ability, race, gender identity, sexual orientation, and perspective. We strive to create an inclusive workplace where differences are celebrated and fuel our success.