Senior Cyber Security Engineer

About

• Remote position, open to candidates in the USA.
• Community Health Systems is seeking a Senior Cyber Security Engineer specializing in Vulnerability Management.

Responsibilities

• Develop, implement, and operate vulnerability management solutions to identify, classify, and report existing and emerging vulnerabilities in enterprise infrastructure including application and multi‑cloud technologies.
• Serve as the subject matter expert in vulnerability management within the exposure management team, contributing to the development, engineering, and maintenance of the vulnerability management program.
• Apply industry best practices and standards to vulnerability identification and remediation methodologies, penetration testing practices, and report generation.
• Stay up to date on the latest vulnerability discoveries and classifications, and proactively assess and report their potential impact on the organization's systems and applications.
• Collaborate with security and IT team members to develop comprehensive plans for reporting and remediation of vulnerabilities across all operating systems, cloud computing systems, and applications in the enterprise.
• Conduct regular vulnerability assessments, utilizing automated tools and manual techniques to ensure thorough coverage and accuracy.
• Analyze vulnerability assessment results and provide recommendations for prioritizing and remediating vulnerabilities based on risk and impact.
• Collaborate with the Threat Intelligence and Incident Response teams to correlate emerging threats with exposure data.
• Contribute to the development and maintenance of vulnerability management policies, procedures, and documentation.
• Provide guidance and support to junior team members, fostering knowledge sharing and professional growth within the vulnerability management team.
• Develop and present metrics, dashboards, and executive reports related to vulnerability trends, SLA compliance and risk posture.
• Communicate and interact effectively and professionally with co‑workers, management, customers, etc.
• Maintain complete confidentiality of company business.
• Communicate with management regarding development within areas of assigned responsibilities and perform special projects as required or requested.

Skills / Requirements

• H.S. Diploma or GED required.
• 3+ years of IT or information security experience.
• 2+ years of vulnerability management experience.
• Practical experience with designing and implementing technologies related to vulnerability management including vulnerability scanning, penetration testing, and configuration management.
• Served as expert thought leader for vulnerability management technologies and influenced the strategy for remediation.
• Experience in process‑driven structured environments and participation in process optimization activities.
• In‑depth knowledge of CVEs, CVSS, threat modeling, and vulnerability scanning technologies.
• Familiarity with industry frameworks and standards such as NIST, CIS, and CVSS.
• Strong understanding of operating systems, network protocols, and web applications.
• Hands‑on experience with vulnerability scanning and assessment tools (e.g., Nessus, Qualys, OpenVAS).
• Excellent analytical and problem‑solving skills, with the ability to prioritize and address vulnerabilities based on risk.
• Strong communication and collaboration skills to work effectively with cross‑functional teams.
• Commitment to continuous learning and staying updated on the latest trends and threats in vulnerability management.
• Strong understanding of lifecycle management principles and their application to the remediation of cybersecurity vulnerabilities.
• Effective communication of technical concepts to a non‑technical audience.
• Excellent written and verbal communication skills.
• Bachelor’s or Master’s Degree in Cyber Security, Computer Science, Information Systems (or related field), or equivalent work experience preferred.
• Python, PowerShell, Nexpatha SQL, industry‑standard vulnerability scanning software, and various other cybersecurity tools preferred.
• SANS Certifications, GIAC Certifications, EC‑Council CEH preferred.

Company Overview

• Community Health Systems is one of the nation’s leading healthcare providers, founded in 1985 and headquartered in Franklin, Tennessee, USA, with a workforce of 10,001+ employees.
• The company has a track record of offering H1B sponsorships (historical numbers provided), though sponsorship is not guaranteed for this specific role.