Role Summary
The Qualys Security Engineer is responsible for managing, configuring, and optimizing the Qualys Vulnerability Management platform to strengthen enterprise security posture. This role ensures effective scanning, reporting, remediation coordination, and continuous monitoring across on-prem and cloud environments.
Key Responsibilities
Platform Management
- Configure, administer, and maintain Qualys modules including:
- Vulnerability Management (VMDR)
- Policy Compliance (PC)
- Asset Management
- Web Application Scanning (WAS)
- Patch Management (optional)
- Manage cloud agents, scanners, appliance deployments, and network scan configurations.
Vulnerability Operations
- Perform regular vulnerability scans for servers, endpoints, databases, and cloud workloads.
- Analyze scan results and validate true positives/negatives.
- Assign and track remediation tasks with infrastructure and application teams.
- Prioritize vulnerabilities based on risk scoring (CVSS), exploitability, and business context.
Security Monitoring & Compliance
- Monitor asset inventory changes and maintain accurate asset tagging.
- Support compliance initiatives (ISO 27001, SOC2, PCI-DSS, HIPAA, etc.).
- Develop dashboards, reports, and executive summaries.
Incident & Risk Management Support
- Collaborate with SOC and IT teams during security incidents.
- Provide vulnerability insights to support threat modeling and risk assessments.
Automation & Integration
- Integrate Qualys with SIEM, ITSM, and CMDB tools (e.g., ServiceNow, Splunk).
- Develop automation workflows using APIs, scripts, and Qualys Cloud Platform.
Required Experience
- 25 years of hands-on experience with Qualys Cloud Platform.
- Experience with vulnerability management in enterprise environments.
- Background in Windows, Linux, Network, or Cloud security operations.
- Experience working with IT, DevOps, and SecOps teams for remediation.
Required Skills
- Strong knowledge of Qualys modules (VMDR, PC, WAS, etc.).
- Understanding of CVE, CVSS, exploits, threat intelligence.
- Familiarity with TCP/IP, network protocols, OS configurations.
- Hands-on experience with scripting (Python, PowerShell, Bash).
- Experience with API integrations and automation.
- Strong analytical, communication, and documentation skills.
Preferred Skills
- Experience with cloud platforms (AWS, Azure, GCP) and cloud security.
- Knowledge of SIEM tools (Splunk, QRadar, Sentinel).
- Understanding of patch management processes.
- Security certifications: CompTIA Security+, CEH, CySA+, or vendor-specific.
