Engineer Vulnerability Remediation

Position Summary

The Vulnerability Remediation Engineer is responsible for improving the organization's security posture through the identification, prioritization, remediation, and prevention of infrastructure vulnerabilities across enterprise infrastructure. This role focuses on vulnerability management, patch automation, security compliance, and remediation engineering across Windows and Linux platforms while minimizing operational risk and service disruption.

The position partners closely with Infrastructure, Cybersecurity, Cloud, and Application Support teams to implement scalable remediation strategies, improve compliance metrics, reduce threat exposure, and strengthen overall system resiliency. The ideal candidate brings strong experience in vulnerability remediations, enterprise patch management, automation, and infrastructure security operations within large scale environments.

Essential Responsibilities

• Lead remediation of server and infrastructure vulnerabilities across Windows and Linux environments in accordance with established service level agreements (SLAs) and security policies, and compliance standards.
• Engineer, implement, and optimize automated patch management and remediation workflows to improve deployment efficiency, compliance, and reporting accuracy
• Perform vulnerability assessments, analyze scan results, and prioritize remediation activities using risk-based methodologies (CVSS, business impact, exploitability
• Collaborate with Infrastructure, Cybersecurity. Cloud, and Application teams to coordinate remediation schedules, maintenance windows, and operational readiness.
• Develop and maintain patch management procedures, remediation runbooks, compliance reporting, and operational documentation
• Monitor remediation success rates, vulnerability trends, compliance metrics, and remediation lifecycle effectiveness to identify continuous improvement opportunities
• Troubleshoot patch deployment failures, configuration issues, system compatibility concerns, and remediation exceptions.
• Support audits, regulatory compliance initiatives, and security assessments through accurate reporting and documentation of remediation activities
• Identify opportunities for automation, process optimization, and operational efficiency using scripting and configuration management tools,
• Partner with Security Operations and Infrastructure Engineering teams to reduce cyber risk exposure and improve overall infrastructure resilience
• Stay current with emerging vulnerabilities, threat trends, patching technologies, and industry best practices
• Participate in after-hours maintenance windows and emergency remediation activities as required.

Minimum Experience and Qualifications

• Bachelor's Degree in a relevant field; OR demonstrated capability to perform job responsibilities with a High School Diploma/GED and at least four (4) years of previous relevant work experience
• Three (3) years of experience with server vulnerability remediation experience
• Three (3) years of experience supporting server administration, vulnerability remediation, patch management, or infrastructure security operations
• Experience with enterprise patch management and vulnerability management tools such as Microsoft SCCM, MECM, WSUS, Tanium, BigFix, Ivanti, Qualys, Rapid7, Nucleus or Tenable
• Experience with automation and scripting technologies such as PowerShell, Python, Bash, or Ansible
• Experience supporting remediation activities across hybrid cloud and on-premises infrastructure environments preferred.
• Knowledge of Windows Server and Linux operating systems, including patching methodologies and security hardening practices
• Understanding of cybersecurity frameworks, vulnerability risk scoring, and remediation prioritization methodologies
• Experience troubleshooting patch deployment issues and coordinating remediation activities across multiple technology teams
• Strong analytical, organizational, and problem-solving skills with the ability to manage multiple priorities in a fast-paced environment
• Excellent written and verbal communication skills
• Ability to work independently and collaboratively within cross-functional teams
• Available for occasional after-hours maintenance activities or emergency remediation support as required
• Available for occasional overnight travel (10%)
• Must pass a pre-employment drug test
• Must be legally eligible to work in the country in which the position is located
• Authorization to work in the US is required. This position is not eligible for visa sponsorship

Preferred Experience and Qualifications

• Bachelor's Degree & certifications in a relevant field
• Five (5) years of experience supporting server administration, vulnerability remediation, patch management, or infrastructure security operations
• Experience in server vulnerability engineering, including vulnerability scanning platforms, remediation orchestration, and secure configuration management.

Crewmember Expectations:

• Regular attendance and punctuality
• Potential need to work flexible hours and be available to respond on short notice
• Able to maintain a professional appearance
• When working or traveling on JetBlue flights, and if time permits, all capable crewmembers are asked to assist with light cleaning of the aircraft
• Must be an appropriate organizational fit for the JetBlue culture, that is, exhibit the JetBlue values of Safety, Caring, Integrity, Passion and Fun
• Promote JetBlue's #1 value of safety as a Safety Ambassador, supporting JetBlue's Safety Management System (SMS) components, Safety Policy and behavioral standards
• Identify safety and security concerns, issues, incidents or hazards that should be reported and report them whenever possible and by any means necessary including JetBlue's confidential reporting systems (Aviation Safety Action Program (ASAP) or Safety Action Report (SAR))
• The use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from being considered for the position.

Equipment:

• Computer and other office equipment

Work Environment:

• Traditional office environment

Physical Effort:

• Generally not required, or up to 10 pounds occasionally, 0 pounds frequently. (Sedentary)

Compensation:

The base pay range for this position is between $72,700.00 and $98,000.00 per year. Base pay is one component of JetBlue's total compensation package, which may also include access to healthcare benefits, a 401(k) plan and company match, crewmember stock purchase plan, short-term and long-term disability coverage, basic life insurance, free space available travel on JetBlue, and more.