Skip Navigation

Vulnerability Management Engineer

Primary Location Plano, Texas Date posted 07/23/2019
Apply Now Job ID: JR0016788

Job Title:

Vulnerability Management Engineer


Location:

US, Texas, Plano

Role Overview:

Role Overview:
In this role, you will use various security tooling to identify, classify and track remediation of vulnerabilities in our systems. You will interact with other teams to enable prioritization, escalation and remediation of vulnerabilities, as needed. You will use both automated scanners as manual penetration testing to assess the security posture of the environment. You will document policies, standards and processes related to Vulnerability Management, and keeps them current. You will keep track of remediation of vulnerabilities as they are handed off to the other teams.

You will keep improving existing process by automation and integration. You will thrive on working with other engineers in a dynamic and collaborative environment where meeting project goals and delivering quality is key.


Company Overview

From device to cloud, McAfee provides market-leading cybersecurity solutions for both business and consumers. McAfee helps businesses orchestrate cyber environments that are truly integrated, where protection, detection, and correction of security threats happen simultaneously and collaboratively. For consumers, McAfee secures your devices against viruses, malware, and other threats at home and away. With the mission of capturing the biggest market share in the area of cyber security, network security, endpoint security, threat research, malware research, cloud security, we work together for a common goal of shaping the company’s future by designing and building best in class cyber security solutions.

Job Title: Vulnerability Management Engineer

Work Location: Plano, US

Role Overview:

In this role, you will use various security tooling to identify, classify and track remediation of vulnerabilities in our systems.  You will interact with other teams to enable prioritization, escalation and remediation of vulnerabilities, as needed.  You will use both automated scanners as manual penetration testing to assess the security posture of the environment.  You will document policies, standards and processes related to Vulnerability Management, and keeps them current. You will keep track of remediation of vulnerabilities as they are handed off to the other teams.

You will keep improving existing process by automation and integration. You will thrive on working with other engineers in a dynamic and collaborative environment where meeting project goals and delivering quality is key.

Company Overview:

From the device to cloud, McAfee provides cybersecurity solutions for both business and consumers. McAfee helps businesses orchestrate cyber environments that are truly integrated, where protection, detection, and correction of security threats happen simultaneously and collaboratively. For consumers, McAfee secures your devices against viruses, malware, and other threats at home and away. With the mission of capturing the biggest market share in the area of cyber security, network security, endpoint security, threat research, malware research, cloud security, we work together for a common goal of shaping the company’s future by designing and building the best in class robust and scalable security products for consumer and enterprise customers.

About the role:

  • Conduct vulnerability scans at the network, operating system, database, and application levels on both internal and external systems within this organizations enterprise
  • Provide technical guidance to engineering teams regarding the impact of security issues
  • Drive remediation by working with various teams
  • Assist in generating asset inventory reports and identify discrepancies
  • Run both internal and external penetration tests, ensuring timeliness and accuracy of reports
  • Automate vulnerability scans
  • Develop technical and non-technical solutions to help mitigate security risks
  • Support various compliance audits, including PCI, HIPAA, SOC, and ISO
  • Develop integrations between various tools and our VM management system
  • Improve existing security process by automation and integration
  • Deliver security metrics and improvement
  • Document security guidance, process and related policy
  • Champion security in the engineering organization

About you: 

  • Proven successful professional experience in software development or software testing
  • Understanding of the Top 10 OWASP (Open Web Application Security Project) vulnerabilities (most critical web vulnerabilities) and how to identify and remediate them
  • Knowledge in Vulnerability Management and its related processes and procedures
  • General understanding of security fundamentals (cryptography, least privilege, segregation of duties…) and general security technologies, including operating systems, network security (firewalls, VPNs, etc.), security event management, business continuity, physical security, identity management, directory services, etc.
  • Knowledge of Active Directory, DDNS, Group Policy, Microsoft Windows Server and Desktop operating systems
  • An understanding of PCI Compliance and EU GDPR Requirements
  • An understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security
  • An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
  • Development experience with one of the following languages: Python, Java, Go or Ruby
  • Familiarity with vulnerability management frameworks and concepts such as CVE, and CVSS
  • Experience with common CI/CD and software deployment automation tools
  • Excellent written and verbal communication skills
  • Demonstrable teamwork skills and resourcefulness
  • Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge
  • Strong sense of ownership, urgency, and drive
  • Knowledge of AWS (Amazon Web Services), GPC (Google Private Cloud), Azure, or other cloud platforms and related technologies is desired.

Company Benefits:

Our corporate culture and values are central to McAfee’s philosophy. Every day we embrace a more diverse workforce and inclusive environment. We are encouraged to bring your true selves to work. Our wide range of social communities & programs, flexible work hours and family-friendly benefits, all allow our employees to feel valued as people, while enjoying positive and challenging work. Check out more: Careers & Life at McAfee.    Perks include:

  • Pension / Retirement Programs
  • Medical, Dental and Vision Coverage Programs
  • Support for Community Involvement and Programs

Unleash your PowerJoin our Talent Network:  http://careers.mcafee.com/

McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Company Benefits and Perks:

Our corporate culture and values are central to McAfee’s philosophy. Every day we embrace a more diverse workforce and inclusive environment. We are encouraged to bring our true selves to work. Our wide range of social communities & programs, flexible work hours and family-friendly benefits, all allow our employees to feel valued as people, while enjoying positive and challenging work.

Check out more: Careers & Life at McAfee.   

Perks may include:

  • Pension / Retirement Programs

  • Medical, Dental and Vision Coverage Programs

  • Paid Time Off

  • Support for Community Involvement

Unleash your PowerJoin our Talent Network:  http://careers.mcafee.com/

Posting Statement:

McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Job Type:

Experienced Hire

Shift:

Shift 1 (United States of America)

Primary Location:

US, Texas, Plano


Additional Locations:

Apply Now

Sign Up for McAfee Job Alerts

Form

Get the latest job openings delivered to your inbox.

Interested InSelect a job category from the list of options. Select a location from the list of options. Finally, click “Add” to create your job alert.

  • Information Technology, Plano, Texas, United StatesRemove

What's Happening
at
McAfee?

Check out #LifeAtMcAfee

Explore our Blog