Vulnerability Engineer

SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Our focus is on enabling our clients to deliver their mission most efficiently and effectively - anytime, anywhere, securely. We combine technical expertise, mission awareness, and an empowered workforce to produce meaningful results.

Join the SkyePoint team and become part of a highly skilled, professional workforce dedicated to delivering mission-critical solutions. Our exceptional technical experts provide innovative services and solutions to federal agencies, making a meaningful impact every day. At SkyePoint, we value top talent and foster an environment where your ideas and contributions truly matter. Be part of a team that values excellence and rewards innovation-your future starts here!

This is a contingent position based upon customer approval and funding.

SkyePoint Decisions is seeking a Vulnerability Engineer for our customer to operate and optimize the vulnerability scanning estate. This person will ensure complete coverage, accurate results, and timely delivery of findings including NEN deployments. They will also be responsible for scheduling and executing comprehensive scans, analyzing the results, and validating the findings to eliminate false positives.

This position will be onsite in Beltsville, MD.

Responsibilities:

Vulnerability Scanning Operations:

Configure, deploy, and maintain vulnerability scanning tools including Tenable Nessus/Security Center, Qualys VMDR, and legacy iPost applications
• Schedule and execute comprehensive credentialed and non-credentialed vulnerability scans across enterprise networks, systems, and applications
• Manage scanning policies, templates, and configurations to ensure optimal coverage while minimizing operational impact
• Coordinate scan timing with system owners and IT operations teams to avoid disruption to mission-critical services
• Monitor scanning infrastructure health, performance, and capacity requirements

Specialized NEN Scanning Operations:

• Deploy and manage cloud-based vulnerability scanning solutions for Non-Enterprise Networks (NENs)
• Implement tiered security approaches for NEN categorization (Tier 1: Low Impact, Tier 2: Moderate Impact, Tier 3: High Impact)
• Coordinate with federal and contractor personnel to establish scanning capabilities for temporary and ad-hoc networks
• Ensure FedRAMP-authorized tools are properly deployed for government network environments
• Maintain centralized visibility and reporting for distributed NEN scanning operations

Data Analysis & Validation:

• Analyze vulnerability scan results to eliminate false positives and validate legitimate security findings
• Correlate vulnerability data across multiple scanning platforms to provide comprehensive risk assessment
• Integrate scan results with asset inventory and configuration data from Tanium and ServiceNow CMDB
• Generate detailed technical reports on vulnerability findings, trends, and remediation recommendations
• Support threat intelligence integration by correlating scan findings with emerging threat indicators

Technical Integration & Automation:

• Integrate vulnerability scanning platforms with SIEM, SOAR, and other security orchestration tools
• Develop and maintain automated workflows for scan scheduling, data collection, and initial analysis
• Support API integrations between scanning platforms and downstream security tools
• Collaborate with Engineering team to enhance automated vulnerability discovery and prioritization capabilities
• Participate in Purple Team exercises by providing technical scanning expertise and infrastructure

Required Qualifications:

• High School diploma with 7 years of Cybersecurity & Vulnerability Management experience OR Bachelor's degree and minimum of 5 years of relevant experience OR 4 years with a Master's degree
• Hands-on experience with vulnerability scanning tools (Tenable, Qualys, Nessus, or similar)
• Understanding of network protocols, system architectures, and security assessment methodologies
• Knowledge of Windows, Linux, and network infrastructure vulnerability assessment
• Familiarity with compliance frameworks including NIST, FISMA, and federal security requirements
• Must be a U.S. citizen
• Must have a current, active Secret clearance with the ability to obtain Top Secret

Preferred Qualifications:

• Industry certifications such as Security+, GCIH, CySA+, or GPEN
• Experience with federal government or highly regulated environments
• Knowledge of cloud platform security assessment (AWS, Azure, hybrid environments)
• Familiarity with Configuration Management Database (CMDB) integration
• Understanding of SOAR platforms and API integrations
• Experience with Non-Enterprise Network security challenges

What We Can Offer You:

• At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day.
• Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched
• Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.

• Flexible Work Environment

Compensation:

Salary Range: TBD

The SkyePoint Decisions salary range for this position is a general guideline only. It represents an estimated range for this position and is just one piece of our total compensation package.

Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.

In addition to a competitive salary, SkyePoint offers benefits including a certification incentive program, PTO, floating federal holiday options, several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, Vision, ST/LT Disability, Life Insurance, and 401k matched.

SkyePoint Decisions is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development. We possess a common vision of excellence and foster a collaborative team culture built upon individual performance and accountability. We invest in our people and systems to create value for our clients. It is the SkyePoint Way. We are grateful for the opportunity to work with exceptional people and give back to the communities we serve. Our employees value the flexibility at SkyePoint that allows them to balance quality work and their personal lives.

Please be aware of recruiting scams and people claiming to be from SkyePoint Decisions. For more information, please see the Welcome Page of our Careers site.

Skyepoint Decisions is a participating E-Verify Employer.

U.S. Citizenship is required for most positions.

Equal Opportunity Employer/Veterans/Disabled.