Vulnerability Management Engineer

The Vulnerability Management Engineer develops and maintains the enterprise vulnerability management lifecycle and scanning strategy to proactively identify and address security risks. Integrates security testing throughout the software development lifecycle (SDLC) accross both waterfall and agile environments to ensure secure application delivery. Provides strategic security guidance and escalation support for business-critical initiatives and change requests, aligning security governance with organizational priorities.

Requirements

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or equivalent practical experience.
• Hands-on experience with tools like Qualys, Nessus, Burp Suite, Fortify, Veracode, or similar platforms.
• Familiarity with CI/CD pipelines and integrating security testing tools into DevOps workflows.
• Solid understanding of operating systems (Windows, Linux), networking, and databases (Oracle, SQL Server).
• Knowledge of regulatory and security frameworks such as NIST, ISO 27001, OWASP, and PCI DSS.
• Experience with systems management tools (e.g., SCCM, Red Hat Satellite) and service management tools like ServiceNow.
• Strong analytical mindset with the ability to solve complex problems under pressure.
• Demonstrated ability to lead cross-functional initiatives with a high sense of accountability.
• High level of accuracy and attention to detail.
• Microsoft Excel, PowerPoint, Word, and Python.
• Excellent communications skills; written & verbal.
• Ability to work independently as well as collaboratively within a team environment.

Benefits

• Base Pay Range $80,625.00 - $132,500.00 per year
• link to Santander Benefits: Santander Benefits - 2025 Santander OnGoing/NH eGuide (foleon.com)