Junior Security & Vulnerability Engineer
GENERAL DESCRIPTION OF POSITION
We're seeking a motivated Junior Security & Vulnerability Engineer to join our team and contribute to the ongoing security enhancement of our IT infrastructure. In this role, you'll collaborate with experienced security engineers to proactively identify, analyze, and address vulnerabilities across our Windows Server, Linux, and Citrix environments. This is an excellent opportunity to gain hands-on experience and expand your skills in areas like threat detection, endpoint security, and security automation. If you have a solid foundation in security best practices and a desire to learn and grow in a dynamic environment, we encourage you to apply!
ESSENTIAL DUTIES AND RESPONSIBILITIES
Implement verified solutions to impact internal systems.
Work with engineering teams to prioritize and mitigate vulnerabilities surfaced on in house scans.
Server Patching and Maintenance:
Support scheduled patching cycles for operating systems and security tools.
Monitor and verify successful application of security patches and updates.
Assist in testing patches to ensure system stability and security.
Vulnerability Remediation:
Assist with vulnerability scanning, tracking, and remediation efforts.
Work with senior engineers to prioritize and mitigate security risks.
Help maintain detailed vulnerability reports and remediation plans.
Physical Server Management:
Install, configure, and maintain physical server hardware and operating systems.
Troubleshoot hardware and software issues, ensuring minimal downtime.
Perform server health checks and monitor system logs.
Threat Detection & Endpoint Security
Help monitor and analyze Endpoint Detection & Response (EDR) alerts.
Assist in investigating security incidents and escalating issues as needed.
Document security threats, vulnerabilities, and resolutions.
Security Configuration & Hardening
Assist in applying security best practices for Windows and Linux environments.
Help configure security policies, firewall rules, and access controls.
Support compliance efforts with industry security standards (CIS, NIST, ISO 27001).
Endpoint Detection and Response (EDR):
Participate in security investigations and forensic analysis.
Assist in documenting security incidents and contributing to response plans.
Work with security teams to improve incident response procedures.
Cloud Server Transition and Management (Future):
Gain exposure to cloud security (AWS, Azure, GCP).
Assist in automating security tasks using PowerShell, Python, or Bash.
Learn about SIEM platforms, intrusion detection, and threat intelligence.
REQUIREMENTS
1-3 years of experience in IT security, vulnerability management, or system administration.
Basic knowledge of Windows Server (2016, 2019, 2022) and Active Directory security.
Understanding of vulnerability scanning tools (e.g., Rapid7, Nessus, Qualys).
Familiarity with patch management and security updates.
Knowledge of Endpoint Detection & Response (EDR) platforms (e.g., CrowdStrike, Sentinel One).
Basic scripting experience (PowerShell, Bash, Python) for automation
Preferred Skills & Certifications
Hands-on experience with SIEM, IDS/IPS, or forensic tools.
Exposure to cloud security concepts (AWS, Azure, GCP).
Relevant certifications (CompTIA Security+, Microsoft Security Administrator, AWS Security Specialty).
Key Skills Summary
Vulnerability Management & Remediation
Patch Management & Security Updates
Threat Detection & Response (EDR, SIEM)
Security Hardening & Compliance
Incident Response & Forensics
Scripting & Automation (PowerShell, Bash, Python - optional)
QUALIFICATIONS
Strong analytical and problem-solving skills.
Ability to learn quickly and collaborate with security teams.
Excellent documentation and communication skills.