Remediation Engineer - Security & Vulnerability Management

Job Description

We are seeking a technically proficient Remediation Engineer – Security & Vulnerability Management to support our vulnerability management and threat remediation efforts. The successful candidate will play a pivotal role in analysing security vulnerabilities, coordinating with cross-functional teams, and implementing timely, effective remediation to reduce the organization’s risk exposure—including on-premise environments, AWS, and Azure—through effective vulnerability lifecycle management, stakeholder engagement, and comprehensive tracking and reporting.

Key Responsibilities

• Lead the identification, assessment, and remediation of vulnerabilities across all operating systems (Windows, Linux, macOS) and platforms (on-premise and cloud).
• Analyze vulnerability scan results from tools such as Qualys, Nessus and cloud tools.
• Collaborate with system, application, and infrastructure teams to prioritize and remediate vulnerabilities across on-premise and cloud environments.
• Prioritize vulnerabilities based on risk, asset criticality, and threat intelligence, ensuring timely resolution.
• Perform or coordinate OS and application patching using tools such as SCCM, Ansible, Tanium, or Satellite.
• Contribute to remediation playbooks, SOPs, and security incident response plans.
• Manage and support secure configurations, patching, and vulnerability remediation across AWS and Azure environments.
• Remediate security misconfigurations or threats in AWS, Azure, and/or GCP using cloud- security tools (e.g., AWS Inspector, Azure Security Center).
• Collaborate with IT, DevOps, and application teams to track and verify remediation efforts.
• Maintain and enhance tools and processes for vulnerability tracking, reporting, and dashboard metrics.
• Develop and deliver regular status updates, risk reports, and executive summaries to stakeholders.
• Create automation scripts (PowerShell, Bash, Python) to assist in large-scale remediation efforts.
• Support integration of remediation workflows into CI/CD pipelines.
• Serve as the primary point of contact for security remediation coordination, driving accountability across teams.
• Continuously improve the vulnerability management program through automation, documentation, and adoption of best practices.
• Stay updated on emerging vulnerabilities, CVEs, and remediation techniques.

Technical Skills:

• Strong knowledge of vulnerability management tools (e.g., AWS Inspector, Azure Security Center, Qualys, or similar).
• Solid understanding of operating systems (Windows, Linux)
• Hands-on experience with AWS and Azure cloud security practices.
• Familiarity with patch management, endpoint protection, and configuration management tools.

In-Depth Knowledge Of:

• Windows Server, Linux distributions (Ubuntu, RHEL/CentOS)
• Network and endpoint security principles
• Patch management and vulnerability lifecycle
• Vulnerability scanning and management tools (e.g., Tenable, Qualys, Rapid7)
• Scripting and automation (PowerShell, Bash, Python)
• Ticketing and ITSM tools (e.g., Jira, ServiceNow, Remedy)
• Security compliance standards (e.g., NIST, PCI-DSS, ISO 27001, CIS Benchmarks)