Skip to content

Vulnerability Management Engineer

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.

Northwestern Mutual is looking for hardworking technologists who would like to grow their career in cybersecurity. The Vulnerability Management Engineer will have the opportunity to work with teams across cybersecurity, infrastructure, and application teams. Considered a highly motivated individual, the Vulnerability Management Engineer is expected to assist senior team members in day to day accountabilities. They will collaborate and engineer automated vulnerability management capabilities that are in alignment with organization policy and standards.

In this role, the candidate can expect to:

  • Analyze vulnerability assessment results to properly react to security weaknesses or vulnerabilities and identify focus areas for remediation of risk

  • Provide guidance and answer questions from teams remediating vulnerabilities

  • Assist in engineering vulnerability management platform for reporting and automated governance

  • Provide vulnerability metrics to leadership through the creation and running of custom queries

  • Assist with reporting requirements and regulatory information gathering

  • Maintain and build out vulnerability scanning practices

  • Maintain configuration control of vulnerability management systems, coordinate upgrades and other maintenance activities

  • Automate manual tasks through scripting

  • Perform other duties as assigned

Required Skills:

  • Proficiency in software development or scripting, specifically using Python

  • Experience writing custom database queries

  • Track record of acting with integrity and ability to take initiative with little guidance

  • Take pride in work, seeking to excel, being curious, adaptable and communicating effectively

  • Strong ability to maintain and strengthen relationships with internal and external partners

Preferred Skills and Experience:

  • Bachelor’s degree or equivalent professional experience in Computer Science, Computer Engineering, Software Engineering, MIS or related field

  • Highly technical and analytical experience, in application programming, systems or network administration

  • Experience with Git and development of applications through automated deployment and orchestration services, such as Gitlab, Ansible, or Kubernetes

  • Familiarity with risk frameworks from NIST

  • Experience with application and cloud security capabilities, including DAST, SAST, SCA, and CSPM

  • Experience with applications hosted in Amazon Web Services (AWS) and/or Microsoft Azure, preferably within an Agile/DevOps operating model

  • Penetration testing skills

  • Relevant certifications from GIAC, ISC(2) and associated technology partner

Benefits:

  • Tons of room for career growth! We are at the beginning and the team will be growing - leadership positions are there for the taking if you show the desire.

  • Highly technical and hardworking fellow test engineers. We care a lot about what we do and are very active in local meetups and love new insights.

  • Flexible work schedules

  • Employee tuition reimbursement

  • Group Life and disability income insurance

  • Competitive benefits- medical/dental/vision, PTO, bonuses, and highly competitive salary

This job is not covered by the existing Collective Bargaining Agreement.

Required Certifications:

Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now! 

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.


FIND YOUR FUTURE

We’re excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.