Talent.com
Senior Information Security Engineer / Vulnerability Manager
Senior Information Security Engineer / Vulnerability ManagerC2 Labs, Inc. • Washington, DC, United States
Senior Information Security Engineer / Vulnerability Manager

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. • Washington, DC, United States
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. – www.c2labs.com

C2 Labs partners with clients on their IT transformation journey via our industry-leading capabilities in full stack development, hyper-automation / DevOps, and cybersecurity compliance. We provide specialized products and services that enable clients to innovate with speed and scale while maintaining a robust and effective security posture. As digital transformation partners, we address the most urgent needs holding back our clients, including proactively addressing cultural change, quantifying risk, automating compliance, and closing critical skill gaps.

Job Duties

As a Senior Information Security Engineer / Vulnerability Manager , you will lead efforts to identify, assess, and mitigate security vulnerabilities across complex enterprise IT environments. Responsibilities include :

Vulnerability & Threat Management

  • Manage enterprise vulnerability management platforms (e.g., Tenable, Qualys, Rapid7) and ensure timely scanning, reporting, and remediation tracking.
  • Perform risk-based analysis of vulnerabilities, develop mitigation plans, and escalate issues requiring urgent remediation.
  • Integrate threat intelligence to prioritize vulnerabilities based on exploitability, industry trends, and business impact.
  • Establish and maintain vulnerability KPIs, metrics, and executive reporting dashboards.

Security Engineering

  • Design, implement, and maintain security controls and safeguards across networks, endpoints, and cloud environments (AWS, Azure, or hybrid).
  • Automate security operations tasks using scripts or tools (Python, PowerShell, Bash, or AWS Lambda).
  • Collaborate with IT and DevOps teams to integrate vulnerability management into CI / CD pipelines and cloud workloads.
  • Conduct regular security assessments, penetration test remediation support, and continuous monitoring activities.

    • Governance, Risk, & Compliance

  • Support compliance with federal frameworks (FedRAMP, NIST SP 800-53, NIST SP 800-171 / CMMC, FISMA, etc.).
  • Document processes, remediation plans, and compliance evidence in alignment with client requirements.
  • Provide recommendations for continuous improvement of security posture and policy enforcement.

    • Collaboration & Leadership

  • Partner with cross-functional teams (IT, Development, Operations, and Compliance) to ensure vulnerabilities are remediated in a timely, risk-based manner.
  • Provide technical leadership and mentorship to junior security engineers and analysts.
  • Participate in client-facing meetings and presentations as a subject matter expert in vulnerability and threat management.

    • Education, Training, Qualifications, and Certifications

  • Required :
  • U.S. Citizenship and ability to obtain / maintain Public Trust clearance
  • Bachelor’s degree in Computer Science, Cybersecurity, or related field OR 5+ years of equivalent hands-on experience
  • Proven experience in vulnerability management, security engineering, or penetration testing
  • Strong knowledge of IT infrastructure, networking, and cloud environments (AWS preferred)
  • Familiarity with security automation, scripting (Python, PowerShell, Bash), and infrastructure-as-code principles
  • Excellent analytical, problem-solving, and communication skills
  • Background check and unannounced drug testing required.
  • This position is onsite in Washington, DC , with occasional travel (up to 25%) for client meetings and work assignments.
  • Preferred :
  • Professional certifications such as CISSP, CISM, OSCP, CEH, Security+, or AWS Security Specialty
  • Experience with compliance frameworks (FedRAMP, NIST 800-53, CMMC)
  • Background in DevSecOps practices, continuous monitoring, and automation

    • EOE STATEMENT :

    We are an equal opportunity employer. All qualified applicants will be considered without discrimination based on race, color, religion, sex, national origin, age, disability, or protected veteran status. Employment offers will be contingent on passing a pre-employment drug screen.

    #J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Information Security Engineer • Washington, DC, United States

    Job_description.internal_linking.related_jobs
    Information System Security Engineer (ISSE)

    Information System Security Engineer (ISSE)

    Tla Llc • Washington, DC, United States
    serp_jobs.job_card.full_time
    TLA is seeking an Information System Security Engineer (ISSE).This is a critical role responsible for designing, developing, implementing, and maintaining secure information systems and networks.Th...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Remote Information Security Engineer : SIEM, EDR & Cloud

    Remote Information Security Engineer : SIEM, EDR & Cloud

    ISACA • Washington, DC, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A well-respected law firm in Washington, DC is seeking an experienced Information Security Engineer to enhance its security operations. This role offers the flexibility to work entirely remote or on...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Senior Security Engineer II (DevSecOps)

    Senior Security Engineer II (DevSecOps)

    Aledade, Inc. • Bethesda, MD, United States
    serp_jobs.job_card.full_time
    As a Senior Security Engineer II at Aledade, we play a central role in helping secure our enterprise, cloud native environments, and applications. We’re looking for security engineers that understan...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Information System Security Manager (ISSM), Public Sector

    Information System Security Manager (ISSM), Public Sector

    Scale AI, Inc. • Washington, DC, United States
    serp_jobs.job_card.full_time
    Our Security team works on operational issues at the leading edge of machine learning technology.You will join a creative and solutions-oriented team collaborating with internal teams at Scale and ...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Cybersecurity Engineer II

    Cybersecurity Engineer II

    InsideHigherEd • Washington D.C., United States
    serp_jobs.job_card.full_time
    The Talent Acquisition department hires qualified candidates to fill positions which contribute to the overall strategic success of Howard University. Hiring staff “for fit” makes significant contri...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • Washington, DC, United States
    serp_jobs.job_card.full_time
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Senior Information System Security Engineer

    Senior Information System Security Engineer

    MANTECH • Washington, DC, United States
    serp_jobs.job_card.full_time
    Senior Information System Security Engineer.Responsibilities include, but are not limited to : .Define IS and Network Environment security requirements in accordance with applicable cybersecurity req...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Information Assurance / Security Engineer, Manager (15.34)

    Information Assurance / Security Engineer, Manager (15.34)

    OCT Consulting, LLC • Washington, DC, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improveme...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30
    Travel CVOR Tech - $1,522 to $1,687 per week in Bethesda, MD

    Travel CVOR Tech - $1,522 to $1,687 per week in Bethesda, MD

    AlliedTravelCareers • Columbia, Maryland, US
    serp_jobs.job_card.full_time
    AlliedTravelCareers is working with LRS Healthcare to find a qualified CVOR Tech in Bethesda, Maryland, 20814!.Ready to start your next travel adventure? LRS Healthcare offers a full benefits packa...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Director, Risk Governance & Strategy (Hybrid) (Richmond, VA or Columbia, MD)

    Director, Risk Governance & Strategy (Hybrid) (Richmond, VA or Columbia, MD)

    Atlantic Union Bank • Columbia, MD, United States
    serp_jobs.job_card.full_time
    The Director - Risk Governance & Strategy will ensure key Enterprise Risk Management ("ERM") processes including identification, assessment, monitoring, management, and reporting of risks appropria...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Information System Security Manager (ISSM)

    Information System Security Manager (ISSM)

    The Johns Hopkins University Applied Physics Laboratory • Laurel, MD, United States
    serp_jobs.job_card.full_time
    Do you love solving problems while enabling impactful research to operate securely?.Are you passionate about making meaningful contributions to national security cyber missions?.Do you like collabo...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Sr. Manager - Network Security Engineering & Ops (Remote)

    Sr. Manager - Network Security Engineering & Ops (Remote)

    Donnelley Financial, LLC • Rockville, MD, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    Join a dynamic team at the pulse of global markets, where we deliver innovative software and service solutions for essential financial reporting and capital markets transactions.At DFIN, we are a v...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    FIPS 140 Security Engineer

    FIPS 140 Security Engineer

    ALTA IT Services • Columbia, MD, US
    serp_jobs.job_card.temporary
    Job Title : FIPS 140 Security Engineer Location : Columbia, MD (Remote) Compensation : $60.HR Duration : 6 month contract to hire In joining the team, you will get an exciting opportunity to work in th...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Technology Vulnerability Management Engineer

    Technology Vulnerability Management Engineer

    Cooley LLP • Washington, DC, United States
    serp_jobs.job_card.full_time
    Technology Vulnerability Management Engineer.Cooley is seeking a Technology Vulnerability Management Engineer to join the Security team. Cooley Technology embraces a culture of customer service exce...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Remote Information Security Engineer

    Remote Information Security Engineer

    InsightSoftware • Washington, DC, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A global software solutions provider is seeking a skilled Information Security Engineer to work remotely in the US.The role involves implementing security measures for information assets, supportin...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_1_day • serp_jobs.job_card.promoted
    ACAS Cybersecurity Engineer : Vulnerability & Compliance

    ACAS Cybersecurity Engineer : Vulnerability & Compliance

    Booz Allen Hamilton • Washington, DC, United States
    serp_jobs.job_card.full_time
    A leading consulting firm in Washington, DC is seeking an experienced Assured Compliance Assessment Solution Cybersecurity Engineer. The role involves deploying and maintaining the ACAS suite while ...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Network Security Engineer

    Network Security Engineer

    Office of The Chief Financial Officer • Northern Virginia, VA, United States
    serp_jobs.job_card.full_time
    Government of the District of Columbia.Office of the Chief Financial Officer (OCFO).Network Security Engineer (INFOSEC).This position is located in the Office of the Chief Financial Officer (OCFO),...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Senior Ansible DevOps Engineer - Chicago

    Senior Ansible DevOps Engineer - Chicago

    Perficient • Columbia, MD, US
    serp_jobs.job_card.full_time
    We are seeking a skilled Ansible DevOps Engineer to design, develop, and implement automation solutions for Windows Server environments. This role focuses on leveraging Ansible and scripting experti...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_hours • serp_jobs.job_card.promoted • serp_jobs.job_card.new