Position Summary

The Vulnerability Remediation Engineer is responsible for improving the organization’s security posture through the identification, prioritization, remediation, and prevention of infrastructure vulnerabilities across enterprise infrastructure. This role focuses on vulnerability management, patch automation, security compliance, and remediation engineering across Windows and Linux platforms while minimizing operational risk and service disruption.

The position partners closely with Infrastructure, Cybersecurity, Cloud, and Application Support teams to implement scalable remediation strategies, improve compliance metrics, reduce threat exposure, and strengthen overall system resiliency.  The ideal candidate brings strong experience in vulnerability remediations, enterprise patch management, automation, and infrastructure security operations within large scale environments.  

Essential Responsibilities

• Lead remediation of server and infrastructure vulnerabilities across Windows and Linux environments in accordance with established service level agreements (SLAs) and security policies, and compliance standards.
• Engineer, implement, and optimize automated patch management and remediation workflows to improve deployment efficiency, compliance, and reporting accuracy
• Perform vulnerability assessments, analyze scan results, and prioritize remediation activities using risk-based methodologies (CVSS, business impact, exploitability
• Collaborate with Infrastructure, Cybersecurity. Cloud, and Application teams to coordinate remediation schedules, maintenance windows, and operational readiness.
• Develop and maintain patch management procedures, remediation runbooks, compliance reporting, and operational documentation
• Monitor remediation success rates, vulnerability trends, compliance metrics, and remediation lifecycle effectiveness to identify continuous improvement opportunities
• Troubleshoot patch deployment failures, configuration issues, system compatibility concerns, and remediation exceptions.
• Support audits, regulatory compliance initiatives, and security assessments through accurate reporting and documentation of remediation activities
• Identify opportunities for automation, process optimization, and operational efficiency using scripting and configuration management tools,
• Partner with Security Operations and Infrastructure Engineering teams to reduce cyber risk exposure and improve overall infrastructure resilience
• Stay current with emerging vulnerabilities, threat trends, patching technologies, and industry best practices
• Participate in after-hours maintenance windows and emergency remediation activities as required.