Vulnerability Management Program Engineer
Securities and Exchange Commission
Full-time
other-general
Location
Washington, DC, United States
Posted
July 04, 2026
Job Description
Summary The Office of Information Technology (OIT) is seeking an IT Specialist (INFOSEC) (Vulnerability Management Program Engineer). As a Vulnerability Management Program Engineer, you will lead enterprise vulnerability lifecycle operations across hybrid, cloud, and modern DevSecOps environments. You will architect, optimize, and operate vulnerability scanning platforms; integrate security tooling into CI/CD pipelines; and drive measurable risk reduction across the enterprise. Responsibilities In this role as a Vulnerability Management Program Engineer, you will be responsible for: Leading enterprise vulnerability management operations from discovery and triage through remediation and validation Engineering and integrating vulnerability management solutions including developing and enforcing automated security gates and policies Analyzing, prioritizing, and driving risk reduction by performing expert analysis of vulnerability data and converting results into actionable remediation gui...