Vulnerability Management Engineer/Lead (Qualys & Intune)

Position Overview: We are seeking a skilled and experienced Vulnerability Management Lead/Specialist with deep expertise in Qualys and Microsoft Intune to join our cybersecurity team. The ideal candidate will lead the vulnerability management efforts, proactively identifying, analyzing, and managing vulnerabilities across the enterprise to safeguard critical business assets.

Responsibilities:

• Lead and manage the end-to-end vulnerability management lifecycle utilizing Qualys, including identification, classification, prioritization, remediation, and reporting.
• Conduct regular vulnerability assessments, including authenticated and unauthenticated scans, ensuring comprehensive coverage across infrastructure, applications, endpoints, and cloud environments.
• Analyze scan results and collaborate with infrastructure, application, and endpoint management teams to prioritize vulnerabilities based on risk, impact, and business criticality.
• Develop and maintain vulnerability management processes, procedures, and documentation aligned with best practices and regulatory requirements.
• Produce actionable reports and metrics to inform stakeholders of vulnerability posture and remediation progress.
• Act as a subject matter expert on Qualys and Microsoft Intune solutions, providing guidance, training, and mentorship to junior team members and IT staff.
• Utilize Microsoft Intune for managing endpoint security, compliance policies, software deployment, patch management, and security updates.
• Configure, deploy, and maintain Intune policies, ensuring alignment with vulnerability management objectives and security best practices.
• Stay current on emerging threats, vulnerabilities, security trends, and remediation techniques to proactively improve vulnerability management strategies.
• Liaise with compliance and audit teams to ensure alignment of vulnerability management practices with regulatory and compliance frameworks.

Qualifications:

• Bachelor's degree in Information Technology, Cybersecurity, or related field (or equivalent experience).
• 7 years of hands-on experience in vulnerability management with deep proficiency in Qualys.
• Qualys certifications such as QualysGuard Certified Specialist or similar highly preferred.
• Strong understanding of vulnerability scanning tools, risk rating frameworks (CVSS), and remediation tracking.
• Experience with cloud environments (AWS, Azure), container technologies, and associated vulnerability scanning.
• Familiarity with regulatory compliance requirements (PCI-DSS, HIPAA, NIST, GDPR).
• Experience with Microsoft Intune for endpoint security and device management.
• Excellent analytical, problem-solving, and communication skills with the ability to articulate technical findings clearly to technical and non-technical stakeholders.
• Proven ability to effectively lead and influence cross-functional teams to prioritize and remediate vulnerabilities.

Technical Expertise

• Proficient in using Intune for rolling out patches and troubleshooting if needed.
• Proficient in Qualys and patch management for non-Microsoft related applications
• Able to do PowerShell scripts if updates are not working with automation or in place tools.
• Hands-on experience installing and managing patches on Unix, Linux, and Windows platforms.

We look forward to welcoming a passionate and skilled Vulnerability Lead/Specialist to help us continually strengthen our cybersecurity posture using Qualys and Intune.