The Vulnerability Remediation Engineer is a key member of the IT team, responsible for proactively prioritizing and remediating security vulnerabilities across the organization's technology infrastructure. This role involves close collaboration with various stakeholders, including Information Security Personnel, Lines of Business (LoBs), technical administrators, and third-party vendors, to ensure timely and effective mitigation of security risks. The Vulnerability Remediation Engineer plays a crucial role in safeguarding the organization's systems and data by implementing and maintaining patch management processes, preferably using Tanium, and ensuring adherence to vulnerability remediation Service Level Agreements (SLAs). This role requires a strong understanding of security best practices, risk assessment methodologies, and compliance requirements. The Vulnerability Remediation Engineer will also collaborate closely with cybersecurity, including devising compensating controls and estimating residual risks. This position is expected to operate with a high degree of independence and professional judgment.

Principal Duties & Responsibilities:

• Analyze vulnerability scan results to identify risks, prioritize remediation efforts, and ensure compliance with regulatory and business requirements.
• Develop and execute comprehensive remediation plans, including patching, configuration modifications, and software upgrades, to mitigate identified vulnerabilities effectively.
• Responsible for remediation activities by collaborating with Lines of Business (LoBs), technical administrators, and third-party vendors to ensure timely resolution of security risks.
• Leads validation of remediation effectiveness by conducting post-remediation assessments and ensuring vulnerabilities are fully mitigated.
• Implement and manage enterprise-wide patch management processes, leveraging tools such as Tanium to ensure timely deployment of security patches across IT assets.
• Enforce patch compliance by tracking deployments, addressing exceptions, and ensuring adherence to vulnerability remediation Service Level Agreements (SLAs).
• Track patch compliance and address any patching exceptions, ensure adherence to vulnerability remediation Service Level Agreements (SLAs), Monitor and track remediation progress to meet deadlines.
• Monitor and report remediation progress, generating detailed reports with key metrics, trends, and outstanding issues.
• Communicate remediation updates to stakeholders, proactively addressing potential business impacts and ensuring alignment with operational priorities.
• Align remediation efforts with the overall security strategy by working closely with the Information Security team to strengthen the organization’s cybersecurity posture.
• Foster collaboration by building strong partnerships with LoBs and technical administrators to drive an integrated vulnerability management approach.
• Develop compensating controls in coordination with cybersecurity teams when immediate remediation is not feasible, ensuring alternative risk mitigation strategies are in place.
• Assess residual risk associated with unresolved vulnerabilities and effectively communicate risk levels to relevant stakeholders for informed decision-making.
  

• 5+ years of proven experience in vulnerability remediation and patch management.
• Hands-on experience with enterprise-level patching tools, preferably Tanium.
• Solid understanding of operating systems (Windows, Linux) and network infrastructure.
• Experience working with vulnerability scanning tools and interpreting scan results.
• Ability to work independently and as part of a team.
• Excellent communication, interpersonal, and collaboration skills.
• Strong analytical and problem-solving abilities.
• Ability to prioritize and manage multiple tasks effectively.

• Bachelor's Degree in Computer Science, Information Systems, or a related field, or equivalent work experience.