Go to homepage

This site uses cookies to improve the user experience! Would you like to allow cookies?

Vulnerability Management Engineer POST NUMBER: 453603

Tempe, AZ, US On-Site
Retail Trade
Vaco
$ 60.00 - 65.00 hourly
contractor
Apply return to results
Vaco is working with an expanding client as they build out their cybersecurity team in the Phoenix area. We are looking for a Senior level Security mind who can lead the charge with identifying, monitoring, and reducing the organization’s digital attack surface by operationalizing asset discovery, vulnerability scanning, and exposure prioritization. This hands-on role is essential to improving the enterprise security posture, contributing directly to business resilience and secure growth. You will run point on vulnerability management and work with business and technology stakeholders to implement tooling and best practices to safeguard the business. You will bring expertise with all areas of Rapid7 and experience expanding organizational use and strong experience with cloud vulnerability tools (Wiz preferred). If you enjoy solving complex technical problems, thrive in a fast-paced, collaborative team environment, and continuously seeks to improve both tools and processes, we are looking to schedule interviews immediately. Please reach out to a member of the Vaco team today to learn more! We are unable to work with 3rd parties or support any sponsorship needs.

Position requirements:
  • 6 years of experience in cybersecurity, vulnerability management, or cloud security.
  • Proficiency with ASM and vulnerability management platforms (e.g., Qualys, Wiz, Tenable, CrowdStrike, Shodan, etc.).
  • Experience integrating data from CMDBs, CSPMs, EDRs, and network discovery tools.
  • Hands-on experience with scripting or automation tools (Python, PowerShell, REST APIs).
  • Familiarity with cloud platforms (AWS, Azure, GCP) and related security controls.
  • Understanding of vulnerability scoring systems (CVSS), threat modeling, and MITRE ATT&CK framework.
  • Strong analytical, troubleshooting, and documentation skills.
  • Excellent communication and teamwork mindset; capable of translating complex technical findings into actionable guidance.
  • Bachelor’s degree in Information Security, Computer Science, or equivalent work experience.
  • Relevant certifications (e.g., Security , GIAC GCIH/GVMS, AWS Security, AZ-500, etc.) are a plus.
Primary Responsibilities:
Discovery & Asset Inventory
  • Perform ongoing discovery of external-facing assets (domains, IPs, APIs, cloud services).
  • Maintain accurate asset inventory through integration with CMDB, cloud platforms (AWS, Azure, GCP), endpoint agents, and scanning tools.
  • Validate asset ownership and data accuracy through collaboration with system and application owners.
Vulnerability & Configuration Assessment
  • Conduct and tune vulnerability scans using ASM platforms (e.g., Rapid7, Qualys, Wiz, Tenable).
  • Analyze scan results and identify misconfigurations, missing patches, and exposed services.
  • Collaborate with remediation teams to track, document, and validate mitigation efforts.
Risk-Based Prioritization
  • Apply risk models to prioritize vulnerabilities based on business impact, threat intel, exploitability, and exposure duration.
  • Enrich findings with contextual metadata to aid in accurate risk communication to technical and non-technical stakeholders.
Threat Monitoring & External Visibility
  • Monitor external attack surface for anomalous changes, unauthorized domains, and known threat actor techniques.
  • Work with the Threat Intelligence and Incident Response teams to triage high-risk exposures.
Automation & Process Optimization
  • Recommend and implement continuous improvements to scanning cadence, alerting logic, and reporting accuracy.
  • Build and maintain automated workflows for asset discovery and exposure tracking via scripting, APIs, and integrations (e.g., ZenDesk, Jira).
Cloud & DevSecOps Alignment
  • Support cloud-native ASM functions through integration with CSPM and CI/CD pipelines.
  • Review Infrastructure-as-Code (IaC) and cloud configurations for public exposure or policy violations.
Tooling & Platform Support
  • Assist in onboarding new platforms, tuning scans, and maintaining licensing and coverage.
  • Operate and maintain ASM-related tools (e.g., Shodan, Censys, Qualys, Wiz).
  • Serve as technical point-of-contact for ASM tool support and integration requests.
Cross-Functional Collaboration
  • Partner with GRC, Application Security, IT Operations, Cloud, Networking, and Architecture teams to ensure secure asset lifecycle management.
  • Assist in the strategic direction, cross-functional coordination, and continuous improvement of the vulnerability management program. This individual ensures alignment between security operations, IT, development teams, and compliance requirements while driving consistent governance, reporting, and stakeholder engagement.
  • Participate in tabletop exercises and contribute to incident investigations related to ASM findings.
  • Stay current on emerging vulnerabilities, exploit trends, and mitigation strategies.
Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan.

Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.

EEO Notice

Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.

Vaco by Highspring and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco by Highspring and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .

Vaco by Highspring also wants all applicants to know their rights that workplace discrimination is illegal.

By submitting to this position, you agree that you will be giving Vaco by Highspring the exclusive right to present your as a candidate for the foregoing employment opportunity. You further agree that you have represented information about yourself accurately and have not affirmatively misrepresented your qualifications. You also agree to maintain as confidential, to the fullest extent permitted by law, any information you learn from Vaco by Highspring about the position and you will limit disclosure of information about the position only to the extent necessary to perform any obligations in furtherance of your application. In exchange, Vaco by Highspring agrees to exercise reasonable efforts to represent you through all solicitation, job screening and resume dispersal.

Privacy Notice

Vaco by Highspring and its parents, affiliates, and subsidiaries (“we,” “our,” or “Vaco by Highspring”) respects your privacy and are committed to providing transparent notice of our policies.

  • California residents may access Vaco by Highspring HR Notice at Collection for California Applicants and Employees here.
  • Virginia residents may access our state specific policies here.
  • Residents of all other states may access our policies here.
  • Canadian residents may access our policies in English here and in French here.
  • Residents of countries governed by GDPR may access our policies here.

Pay Transparency Notice

Determining compensation for this role (and others) at Vaco by Highspring depends upon a wide array of factors including but not limited to:

  • the individual’s skill sets, experience and training;
  • licensure and certification requirements;
  • office location and other geographic considerations;
  • other business and organizational needs.

With that said, as required by local law, Vaco by Highspring believes that the following salary range referenced above reasonably estimates the base compensation for an individual hired into this position in geographies that require salary range disclosure. The individual may also be eligible for discretionary bonuses.

Apply return to results

Apply Now

Please ensure all fields have been filled.

Your Information
* = Required Field

Resume Upload*
Please note only files with .pdf, .docx or .doc file extensions are accepted.
Max file size: 512KB.
Please attach your resume, ensure it is in the correct format and smaller than 512KB.

×

Vaco LLC, and its parents, subsidiaries, affiliates, and assigns ("Company," "We," or "Us") seeks your consent to contact you with certain non-emergency, automated, autodialed, prerecorded, or other telemarketing phone calls, emails, or text messages under the Telephone Consumer Protection Act (TCPA), Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM) and relevant state law.