NXTG Senior Vulnerability Engineer

Role Overview

We are seeking a Senior Vulnerability Engineer to support enterprise vulnerability management, exposure management, compliance auditing, and web application scanning operations. This role is responsible for engineering and optimizing vulnerability management capabilities using Tenable One, Nessus, and Tenable Web App Scanning across hybrid cloud and on-premises environments within a highly regulated federal setting. The ideal candidate will possess hands-on experience with authenticated and non-authenticated web application scanning, cloud-native asset visibility, and enterprise-scale vulnerability operations.

Key Responsibilities

• Engineer, maintain, and optimize enterprise vulnerability and exposure management platforms using Tenable One, Nessus, and Tenable WAS.
• Configure and support authenticated and non-authenticated web application scanning, including Selenium-based authentication workflows and SSO integrations.
• Perform credentialed vulnerability and compliance scanning across Linux, Windows, databases, cloud infrastructure, web applications, and network appliances.
• Support continuous attack surface visibility, asset discovery, exposure prioritization, and scalable scan operations across hybrid cloud environments.
• Troubleshoot complex operational issues involving TLS/SSL negotiation, authentication failures, load balancers, and distributed scanning infrastructure.
• Deploy and maintain compliance audit configurations aligned to IRS Safeguards / SCSEM, CIS Benchmarks, NIST SP 800-53, DISA STIG, and FedRAMP requirements.
• Integrate Tenable platforms with enterprise technologies including CyberArk, Splunk, ServiceNow, and AWS APIs.
• Support remediation validation, compliance reporting, audit readiness activities, and operational dashboard development.

Required Qualifications

• Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field. Equivalent experience may be considered.
• Experience: 10+ years of experience supporting enterprise vulnerability management, exposure management, cybersecurity engineering, or security operations programs.
• Technical Skills: Hands-on experience with Tenable One, Nessus, Tenable WAS, and AWS cloud environments. Experience supporting authenticated and non-authenticated web application scanning. Strong understanding of vulnerability management, exposure management, and cloud-native security concepts.

Preferred Qualifications

• Familiarity with IRS Safeguards / SCSEM, CIS Benchmarks, NIST guidance, DISA STIG, and FedRAMP compliance frameworks.
• Experience supporting enterprise integrations, automation workflows, and operational reporting capabilities.
• Strong troubleshooting, analytical, and problem-solving skills across infrastructure, cloud, and application environments.
• Project management, workflow, innovation and process improvement, and consulting skills.

Compensation & Benefits

The pay rate for this position is between $60.00 and $80.00 per hour. Please note that there will be only one bill rate regardless of the number of hours worked in a day or work week.

We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. We will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.