We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Vulnerability Engineer (Remote - US) at Jobgether. This position is posted by Jobgether on behalf of American Recruiting & Consulting Group. We are currently looking for a Vulnerability Engineer in the United States.. This role is a fully remote position aligned with Eastern Time Zone hours, offering the chance to make a direct impact on the security of enterprise web applications and systems. As a key member of the cybersecurity team, you will be responsible for safeguarding applications against threats by managing web application firewalls, bot protection tools, and vulnerability scanning solutions. You will collaborate closely with developers and cross-functional teams to identify, prioritize, and remediate vulnerabilities while contributing to the creation of secure coding practices and robust security policies. The position combines hands-on technical work, process development, and proactive defense strategies to maintain a strong security posture in an evolving threat landscape.. . Accountabilities. . Implement and manage web application firewalls (WAFs) and bot protection systems to detect and block malicious traffic.. . Operate and maintain vulnerability scanning tools (e.g., HCL AppScan, Burp Suite, ZAP, Nessus) to identify and remediate security weaknesses.. . Develop and update security policies, procedures, and technical documentation related to WAFs, bot protection, and vulnerability management.. . Work closely with cross-functional teams to integrate security tools into other systems and workflows.. . Conduct dynamic and static vulnerability scanning throughout the development lifecycle.. . Prioritize vulnerabilities based on risk and collaborate with development teams to implement remediation and secure coding practices.. . Provide training and guidance to technical teams regarding vulnerability findings and mitigation strategies.. . Monitor industry trends and emerging threats, recommending improvements to enhance application security.. . . Minimum 4 years of experience in vulnerability management, with strong knowledge of web application vulnerabilities and remediation techniques.. . Experience with security testing tools such as HCL AppScan, Burp Suite, Zed Attack Proxy, or Nessus.. . At least 1 year of experience in infrastructure or development.. . SSCP (or higher) certification required within 180 days of hire.. . Strong analytical and problem-solving skills to address complex technical challenges.. . Excellent communication and collaboration abilities to work with cross-functional teams.. . Preferred: experience with F5 WAFs, scripting in PowerShell or Python, and familiarity with Agile/DevOps methodologies.. . Company Location: United States.