Senior Vulnerability Specialist (Infra)

Citizens Financial Group
Johnston, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 135K

Job location

Johnston, United States of America

Tech stack

Kubernetes Security
API
Bash
Cloud Computing
Cloud Computing Security
Configuration Management Databases
Computer Security
Information Systems
Continuous Integration
Information Engineering
Data Normalization
Python
Automation of Marketing
PCI Data Security Standards
Powershell
Systems Integration
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Cloud Platform System
Infrastructure Automation Frameworks
Information Technology
REST
Data Pipelines
Devsecops
Qualys
Security Orchestration, Automation & Response
ServiceNow

Job description

Senior Security Automation Engineer responsible for advancing the enterprise Vulnerability Management program through automation, orchestration, and process optimization. Focus on improving efficiency, scalability, and data quality across infrastructure, cloud, and application environments. Partner with Vulnerability Management, Engineering, Infrastructure, Cloud, and ServiceNow teams to enable risk based remediation at scale., Security Automation and Engineering

  • Design, build, and maintain automation solutions supporting enterprise Vulnerability Management
  • Develop integrations across vulnerability management platforms, ServiceNow, cloud environments, CMDB, reporting systems, and security tools
  • Automate vulnerability intake, enrichment, correlation, prioritization, assignment, exception handling, and remediation tracking
  • Reduce manual processes through scripting, APIs, orchestration, and workflow automation

Platform and Workflow Optimization

  • Improve and optimize Vulnerability Management workflows and operational processes
  • Build automated dashboards, metrics, and reporting for operational and executive stakeholders
  • Identify process bottlenecks and implement scalable automation solutions
  • Enhance asset inventory correlation, remediation validation, SLA tracking, and risk based prioritization

Data Engineering and Integration

  • Develop and maintain scripts, APIs, and data pipelines supporting vulnerability data normalization and enrichment
  • Integrate security platforms including Qualys, Tenable, Wiz, ServiceNow, and cloud technologies
  • Ensure data accuracy, consistency, and reliability across platforms and reporting systems
  • Support data analysis and reporting for regulatory, audit, and operational requirements

Collaboration and Continuous Improvement

  • Partner with infrastructure, cloud, engineering, and security teams to improve remediation workflows and maturity
  • Support automation aligned with DevSecOps and enterprise modernization initiatives
  • Research emerging technologies and identify opportunities for automation and scalability
  • Participate in troubleshooting, root cause analysis, and continuous improvement across the Vulnerability Management ecosystem

Requirements

Do you have experience in Vuls?, Do you have a Bachelor's degree?, Required Experience and Skills

  • 5+ years of experience in cybersecurity engineering, security automation, or Vulnerability Management
  • Strong scripting skills using Python, PowerShell, Bash, or similar languages
  • Experience integrating security tools and workflows using APIs and automation platforms
  • Familiarity with Qualys, Tenable, Rapid7, Wiz, and ServiceNow
  • Strong understanding of Vulnerability Management processes and remediation workflows
  • Knowledge of cloud platforms, REST APIs, and automation best practices
  • Strong analytical, troubleshooting, and communication skills

Preferred Experience

  • Experience with ServiceNow SecOps or Vulnerability Response
  • Familiarity with DevSecOps, CI CD pipelines, and infrastructure as code
  • Experience with cloud and container security technologies
  • Knowledge of regulatory frameworks such as PCI DSS, NIST, or FFIEC
  • Experience in large enterprise or regulated environments

Education and Certifications

  • Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or related field, or equivalent experience
  • Certifications such as CISSP, Security+, GSEC, GCSA, or cloud security certifications preferred

Benefits & conditions

Pulled from the full job description

  • Tuition reimbursement
  • Parental leave
  • Health insurance
  • Retirement plan
  • Paid time off
  • Vision insurance
  • Dental insurance, The salary range for this position is from $96,000 to $135,000 per year, plus an opportunity to earn an annual discretionary bonus. Actual pay is based on various factors including but not limited to, the budget, work location, relevant skills, and experience.

We offer competitive pay, comprehensive medical, dental, and vision coverage, retirement benefits, maternity and paternity leave, flexible work arrangements, education reimbursement, wellness programs, and more. Citizens' paid time off policy exceeds the mandatory paid sick or paid time away policies of local and state jurisdictions in the United States. For an overview of our benefits, visit our Careers site - https://jobs.citizensbank.com/benefits, We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more., Glassdoor Best Place to Work in Consulting, Finance & Insurance Human Rights Campaign Corporate Equality Index 100 Award Newsweek America's Most Charitable Company The Banker's US Bank of the Year Dave Thomas Foundation's Best Adoption-Friendly Workplace Disability:IN Best Places to Work for Disability Inclusion

Apply for this position