Cradlepoint is seeking a highly motivated Security Vulnerability Engineer to join our dedicated security team. This pivotal role is responsible for the end-to-end vulnerability management practice, encompassing identifying, researching, prioritizing, remediating, and mitigating vulnerabilities. You will work alongside a highly skilled and diverse team, ensuring the continuous security and integrity of our information assets. We are looking for a proactive individual who values collaboration, continuous learning, and driving impactful security improvements.
What You Will Do: Key Responsibilities
- Perform daily operations and maintenance of vulnerability scanning tools and their supporting infrastructure.
- Register assets in the scanning tool and execute scans according to the agreed schedule.
- Conduct comprehensive Vulnerability Management, including supporting scan tools, executing vulnerability scans, performing analysis, and recommending/tracking mitigations.
- Perform periodic validation of assets through the Central Depository.
- Register assets in scanning tool and perform periodic scans to ensure continuous coverage.
- Perform, review, and analyze security vulnerability data & CIS Hardening data to identify applicability and false positives, recommending corrective actions for mitigation.
- Publish reports on identified security vulnerabilities & CIS Hardening, as well as control gaps identified during security control reviews, as per the defined schedule.
- Overall responsibility for governance and tracking of the Vulnerability Remediation action plan.
- Maintain a risk register for exploitable vulnerabilities and discuss remediation strategies with stakeholders.
- Act on after-hours (on-call support) for IT security incidents as required.
- Analyze results of Web application assessments and provide executive reports with recommendations for mitigation.
- Manage tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology developers and support teams.
- Assist in metrics development and reporting for vulnerability management activities.
- Devise methods to automate testing activities and streamline testing processes.
- Provide oral briefings to leadership and technical staff, as necessary.
- Support and run vulnerability management scans of customer systems (using tools like Tenable Nessus, Qualys, etc.).
- Plan and coordinate vulnerability scanning schedules with customers and stakeholders.
Required Qualifications
- Education: Bachelor's Degree (B.E./B.Tech) in Computer Science or a related field.
- Experience: 8-10 years in a relevant security role.
- Solid understanding of security controls (e.g., Access Control, auditing, authentication, encryption, integrity, physical security, and application security).
- Working knowledge of scanning tools such as Nessus, Qualys, Netsparker, Fortify, etc.
- Strong understanding of enterprise, network, system, and application-level security issues.
- Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks, including available security controls (technical & process controls) for respective layers.
- Experience writing technical reports and executive summaries.
- The ability to provide support after normal business hours.
- The ability to work constructively under pressure.
- Ability to work both in a team as well as individually.
- Participate in the out-of-hours on-call rotation, providing technical support to the business for major and critical incidents.
- Strong Knowledge Sharing and Collaboration skills.
- Ability to deliver results and meet customer expectations.
- Excellent communication skills; English is a must.
