Vulnerability Management Engineer

What You'll Do 

We are looking for a passionate and driven Vulnerability Engineer to join our Vulnerability Management team. This role is ideal for someone who thrives in a fast-paced environment, has a strong understanding of security principles, and enjoys solving complex problems to reduce risk. You’ll analyze vulnerabilities across diverse systems, collaborate with cross-functional teams to prioritize and remediate findings, and help enhance our processes and tooling to strengthen the organization’s security posture. 

Responsibilities:

• Perform recurring and on-demand scanning of organizational systems and cloud environments 

• Research and assess emerging security threats and vulnerabilities 

• Communicate the risks of identified vulnerabilities and recommend security controls to mitigate them 

• Collaborate with IT and development teams to develop and implement remediation plans for identified vulnerabilities 

• Monitor and track the progress of remediation efforts to ensure vulnerabilities are resolved within defined SLAs 

• Maintain documentation regarding vulnerability management, including policies and procedures 

• Ensure compliance with industry standards, regulatory requirements, and best practices related to vulnerability management 

• Improve and mature existing vulnerability management processes and systems 

• Provide technical support for vulnerability management projects 

• Participate in incident response activities, providing expertise in vulnerability exploitation and mitigation 

What You’ll Need to Be Successful 

• Experience with vulnerability scanning tools such as Tenable, Qualys, Rapid7, or comparable tools 

• Strong understanding of vulnerability management principles across on‑premises, hybrid, and cloud environments  

• Ability to clearly communicate technical concepts, risks, and remediation guidance to non-technical stakeholders  

• Excellent written and verbal communication skills, with the ability to produce clear documentation, reports, and stakeholder-facing materials  

• Strong organizational and time management abilities, with experience managing multiple workstreams, priorities, and deadlines in a fast-paced environment 

What You May Need to be Successful:

• 3+ years of work experience in vulnerability management or related fields such as cyber risk management, penetration testing, security operations, or threat management 

• Familiarity with common compliance and risk frameworks (e.g., NIST, ISO, CIS) and experience supporting internal or external security audits  

• Experience with system and application security posture management, including configuration hardening and alignment with security best practices  

• Exposure to data visualization and reporting tools to communicate vulnerability trends, risk posture, or remediation progress effectively  

• Relevant professional certifications such as Security+, CEH, CVA, CISSP, CISA, CISM, GIAC, or equivalent

Why Join Us at First Advantage?

At First Advantage, team members are united around a noble purpose: helping organizations to safeguard their workplaces and manage risk. The company’s culture is shaped by its core values — Authenticity, Curiosity, Integrity, Teamwork, Customer-Inspired — empowering team members to bring their best ideas forward, collaborate across departments, and make a real impact.

First Advantage offers a variety of culture programs and benefits designed to enhance employee experience and development.

• Employee Impact Groups

• FA Cares volunteer opportunities

• Mentorship Advantage Program

• SOAR, award-winning manager development program