Vulnerability Management Engineer

TL;DR

Vulnerability Management Engineer: Responsible for identifying, analysing, and supporting the remediation of vulnerabilities across hirify.global's Infrastructure and cloud environments with an accent on regulatory compliance and risk-based prioritization. Focus on triaging findings, developing remediation guidance, and embedding vulnerability management into delivery pipelines to meet standards like DOD IL4 and FedRAMP.

Location: Hybrid in Austin, TX

Company

hirify.global runs one of the world’s largest networks, powering millions of websites and Internet properties by protecting and accelerating them online.

What you will do

• Conduct vulnerability scanning and perform in-depth analysis of findings from scanning tools.
• Triage, validate, and prioritize vulnerabilities using risk-based approaches and determine business impact.
• Develop, document, and deliver technical remediation guidance and solutions.
• Support DOD IL4 and FedRAMP preparation, ensuring processes, evidence, and tooling align with requirements.
• Work closely with engineering and service teams to embed vulnerability management into delivery pipelines.
• Manage and track the remediation backlog, maintaining focus on risk reduction and measurable progress.

Requirements

• 3+ years Vulnerability Management experience in a heavily regulated environment.
• Solid understanding of DoD Impact level IL4, FedRAMP, SOC-2, and PCI frameworks.
• Strong understanding of CVSS (Common Vulnerability Scoring System) and risk assessment methodologies.
• Hands-on experience with vulnerability scanning platforms (e.g., Qualys, Nessus, Rapid7 InsightVM).
• Strong analytical skills to identify patterns and distinguish between theoretical risk and actual exploitability.
• Bachelor's degree in Computer Science, Information Security, or security certifications in a related field.

Nice to have

• Experience with scripting languages (e.g., Python) for automation.
• Proficiency in using ticketing tools like JIRA for managing tickets and tasks.
• Hands-on experience with Infrastructure pentesting tools.

Culture & Benefits

• Part of a mission to help build a better, free, and open Internet.
• Committed to diversity, inclusiveness, and supporting individual development.
• Involvement in projects like Project Galileo, Athenian Project, and 1.1.1.1.
• Proud to be an equal opportunity employer providing reasonable accommodations to qualified individuals with disabilities.