Senior Information Security Engineer / Vulnerability ManagerC2 Labs, Inc. • Washington, DC, United States

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. • Washington, DC, United States

30+ days ago

Job type

Full-time

Job description

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. – www.c2labs.com

C2 Labs partners with clients on their IT transformation journey via our industry-leading capabilities in full stack development, hyper-automation / DevOps, and cybersecurity compliance. We provide specialized products and services that enable clients to innovate with speed and scale while maintaining a robust and effective security posture. As digital transformation partners, we address the most urgent needs holding back our clients, including proactively addressing cultural change, quantifying risk, automating compliance, and closing critical skill gaps.

Job Duties

As a Senior Information Security Engineer / Vulnerability Manager , you will lead efforts to identify, assess, and mitigate security vulnerabilities across complex enterprise IT environments. Responsibilities include :

Vulnerability & Threat Management

Manage enterprise vulnerability management platforms (e.g., Tenable, Qualys, Rapid7) and ensure timely scanning, reporting, and remediation tracking.
Perform risk-based analysis of vulnerabilities, develop mitigation plans, and escalate issues requiring urgent remediation.
Integrate threat intelligence to prioritize vulnerabilities based on exploitability, industry trends, and business impact.
Establish and maintain vulnerability KPIs, metrics, and executive reporting dashboards.

Security Engineering

Design, implement, and maintain security controls and safeguards across networks, endpoints, and cloud environments (AWS, Azure, or hybrid).

Automate security operations tasks using scripts or tools (Python, PowerShell, Bash, or AWS Lambda).

Collaborate with IT and DevOps teams to integrate vulnerability management into CI / CD pipelines and cloud workloads.

Conduct regular security assessments, penetration test remediation support, and continuous monitoring activities.

Governance, Risk, & Compliance

Support compliance with federal frameworks (FedRAMP, NIST SP 800-53, NIST SP 800-171 / CMMC, FISMA, etc.).

Document processes, remediation plans, and compliance evidence in alignment with client requirements.

Provide recommendations for continuous improvement of security posture and policy enforcement.

Collaboration & Leadership

Partner with cross-functional teams (IT, Development, Operations, and Compliance) to ensure vulnerabilities are remediated in a timely, risk-based manner.

Provide technical leadership and mentorship to junior security engineers and analysts.

Participate in client-facing meetings and presentations as a subject matter expert in vulnerability and threat management.

Education, Training, Qualifications, and Certifications

Required :

U.S. Citizenship and ability to obtain / maintain Public Trust clearance

Bachelor’s degree in Computer Science, Cybersecurity, or related field OR 5+ years of equivalent hands-on experience

Proven experience in vulnerability management, security engineering, or penetration testing

Strong knowledge of IT infrastructure, networking, and cloud environments (AWS preferred)

Familiarity with security automation, scripting (Python, PowerShell, Bash), and infrastructure-as-code principles

Excellent analytical, problem-solving, and communication skills

Background check and unannounced drug testing required.

This position is onsite in Washington, DC , with occasional travel (up to 25%) for client meetings and work assignments.

Preferred :

Professional certifications such as CISSP, CISM, OSCP, CEH, Security+, or AWS Security Specialty

Experience with compliance frameworks (FedRAMP, NIST 800-53, CMMC)

Background in DevSecOps practices, continuous monitoring, and automation

EOE STATEMENT :

We are an equal opportunity employer. All qualified applicants will be considered without discrimination based on race, color, religion, sex, national origin, age, disability, or protected veteran status. Employment offers will be contingent on passing a pre-employment drug screen.

#J-18808-Ljbffr

Create a job alert for this search

Information Security Engineer • Washington, DC, United States

Related jobs

Senior Information System Security Engineer (ISSE)

Leidos • Alexandria, VA, United States

Full-time

Join us in transforming how technology serves those who serve.At Leidos, we're not just delivering solutions - we're pioneering the future of defense and intelligence technology.Our diverse teams o...Show more

Last updated: 1 day ago • Promoted

Security Engineer-Senior Vulnerability Mgmt

Aditi Consulting • Washington, DC, United States

Full-time

Lead a small team of individuals who support cybersecurity operational environment and Vulnerability Management related requirements / needs. Engage with Federal Leadership and counterparts to identi...Show more

Last updated: 1 day ago • Promoted

Senior Information Systems Security Engineer

Leidos • Reston, VA, United States

Full-time

As a Senior Information Security Systems Engineer (ISSE) you will join a small team of security engineers providing Information Assurance (IA) Architecture Analysis and Security Engineering Support...Show more

Last updated: 13 hours ago • Promoted • New!

Senior Information Systems Security Engineer

Govcio LLC • Alexandria, VA, United States

Full-time

Information Systems Security Engineer.This position will be located in Alexandria, VA area and will be a hybrid remote position. This position focuses on maintaining support of cybersecurity, risk m...Show more

Last updated: 1 day ago • Promoted

Senior Information System Security Engineer

ManTech • Quantico, VA, United States

Full-time

Senior Information System Security Engineer (ISSE).Responsibilities include, but are not limited to : .Identify information protection needs for an IS and Network Environment.Define IS and Network En...Show more

Last updated: 1 day ago • Promoted

Senior Information Systems Security Engineer

Leidos Inc • Reston, VA, United States

Full-time

Last updated: 25 days ago • Promoted

Senior Information Systems Security Engineer (FORECASTED)

Columbia Technology Partners • Annapolis Junction, MD, United States

Full-time

This position is contingent on contract award • •.The Information Systems Security Engineer shall perform or review, technical security assessments of computing environments to identify points of vul...Show more

Last updated: 13 hours ago • Promoted • New!

SIGN ON BONUS Senior Information Systems Security Engineer (Sr. ISSE)

Helm Point Solutions • Baltimore, MD, United States

Full-time

Senior Information Systems Security Engineer (ISSE).Linthicum, MD • Government / Military.Secure the Nation's Most Critical Systems. Helm Point Solutions is a woman-owned cybersecurity and physical se...Show more

Last updated: 1 day ago • Promoted

Enterprise - Information Systems Security Engineer - Vulnerability, POAM, Agile

Erias Ventures • Chantilly, VA, United States

Full-time

Erias Ventures was founded to serve its customers with an entrepreneurial mindset.Our staff includes technical experts working across multiple disciplines, bringing diverse perspectives to every pr...Show more

Last updated: 1 day ago • Promoted

Vulnerability Engineer

SkyePoint Decisions • Laurel, MD, United States

Full-time

Cyber and Information Security.SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT s...Show more

Last updated: 13 hours ago • Promoted • New!

Senior Information Security Systems Engineer

Leidos Inc • Reston, VA, United States

Full-time

Last updated: 25 days ago • Promoted

Senior Information Security Systems Engineer

Leidos • Reston, VA, United States

Full-time

Last updated: 13 hours ago • Promoted • New!

Senior Information Systems Security Engineer (ISSE)

DAn Solutions • Reston, Virginia, USA

Full-time +1

REQUIRES AN ACTIVE / EXISTING TS / SCI WITH CI POLYRAPH • •.Provides technical expertise to ensure the network systems meet DIA C&A and IA requirements and are properly certified and accredited.Respo...Show more

Last updated: 3 days ago • Promoted

Senior Information System Security Engineer (ISSE)

Leidos Inc • Alexandria, VA, United States

Full-time

Last updated: 30+ days ago • Promoted

Senior Security Engineer - Vulnerability Management

CARFAX • Centreville, VA, United States

Full-time

Senior Security Engineer - Vulnerability Management.Isn't it time you bragged about where you work? At CARFAX, we do, every day. We pride ourselves on being mission-focused on helping to grow a bran...Show more

Last updated: 1 day ago • Promoted

Senior Information System Security Engineer

ManTech International Corporation • Quantico, VA, United States

Full-time

Transform the future of federal services with MANTECH! Join a vibrant, energetic team committed to enhancing national security and public services through innovative tech.Since 1968, we’ve partnere...Show more

Last updated: 1 day ago • Promoted

Senior Information System Security Engineer

General Dynamics Information Technology • Reston, VA, United States

Temporary

Clearance Level Must Currently Possess : .Clearance Level Must Be Able to Obtain : .IT Infrastructure and Operations.Computer Servers, Critical Systems, Information Technology (IT) Systems.Senior Infor...Show more

Last updated: 1 day ago • Promoted

Senior Information Systems Security Engineer

Base2 Solutions • Fort Meade, MD, United States

Full-time

Supports the Government in the design, development, implementation, and / or integration of IA architectures, systems, or system components. Provides the Government assistance to ensure that the archi...Show more

Last updated: 1 day ago • Promoted