Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Vulnerability Management Engineer - Journeyman at Cornerstone Technology
Alexandria, VA 22311, USA -
Full Time

Start Date

Immediate

Expiry Date

30 Nov, 25

Salary

124381.52

Posted On

31 Aug, 25

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Splunk, Scap, Databases, Communication Skills, Workstation, Scanning, Operating Systems, Vulnerability Management, Nessus, Solarwinds

Industry

Information Technology/IT

Description

Job Title: Vulnerability Management Engineer - Journeyman
Location: Hybrid – Occasional on-site at Washington, D.C. Metro Area or Seaside, CA
Clearance: Active DoD Secret/Tier 3
Employment Type: Full-Time

OVERVIEW:

Cornerstone Technology is seeking a highly experienced Vulnerability Management Engineer to join our mission-focused team supporting the Defense Manpower Data Center (DMDC) under the IT GEMS contract. This position plays a critical role in safeguarding sensitive DoD systems from evolving cyber threats. You will support vulnerability identification, STIG compliance, SCAP data analysis, prioritization, and remediation efforts across enterprise systems, ensuring compliance with DoD cybersecurity standards and improving DMDC’s overall risk posture. Hybrid flexibility allows for occasional on-site work at either Washington, D.C. or Seaside, CA.

MUST-HAVE REQUIREMENTS:

  • Active Secret / Tier 3 clearance – no exceptions
  • 5+ years of vulnerability management or closely related cybersecurity experience
  • Proven, hands-on experience with ACAS/Nessus, SCAP, and DISA STIG implementation
  • Strong, in-depth knowledge of Microsoft Windows operating systems (workstation and server)
  • Foundational understanding of Linux/UNIX administration and security practices

REQUIRED QUALIFICATIONS

  • 5+ years of vulnerability management or related cybersecurity experience.
  • Expertise in Windows OS hardening (workstation and server).
  • Knowledge of Linux/UNIX administration and security practices.
  • Familiarity with enterprise-scale IT environments, including networking and databases.
  • Experience with DoD cybersecurity standards and tools such as:
  • ACAS / Tenable Nessus
  • Tanium
  • Splunk
  • HBSS / Trellix
  • SolarWinds
  • OCI native vulnerability scanning
  • Strong analytical, troubleshooting, and communication skills.

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities
  • Perform vulnerability scanning and assessments across 10,000+ assets in multi-enclave environments (on-prem, cloud, AWS, classified).
  • Analyze and interpret SCAP data across 200+ technologies to produce actionable risk insights.
  • Apply DISA STIGs and DoD cybersecurity standards to ensure secure system configurations.
  • Collaborate with system administrators, developers, and DBAs to track and remediate vulnerabilities.
  • Support structured remediation processes, ensuring vulnerabilities are closed within required DoD timelines.
  • Provide leadership with risk posture reporting, including quantifiable risk scoring metrics.
  • Participate in on-site audit support (monthly or as needed).
  • Contribute to continuous improvement of vulnerability management processes, including DevSecOps pipeline integration (e.g., Kubernetes).