Senior Information Security Engineer Vulnerabil... @ C2 Labs, Inc
placeDistrict of Columbia, United States
attach_money $150,000
businessOn Site
scheduleFull Time
Posted 20 hours ago
Your Application Journey
Interview
Email Hiring Manager
****** @c2labs.com
Recommended after applying
Job Details
Overview
C2 Labs, Inc. partners with clients on their IT transformation journey through full stack development, hyper-automation/DevOps, and cybersecurity compliance. The position offers leadership in managing and mitigating security vulnerabilities, integrating threat intelligence, and automating compliance.
Responsibilities
Vulnerability & Threat Management:
- Manage enterprise vulnerability platforms (Tenable, Qualys, Rapid7).
- Perform risk-based vulnerability analysis and develop mitigation plans.
- Integrate threat intelligence to prioritize issues.
- Establish KPIs and executive dashboards.
Security Engineering:
- Design and maintain security controls across networks, endpoints, and cloud environments.
- Automate security operations using Python, PowerShell, Bash, or AWS Lambda.
- Collaborate with IT and DevOps for CI/CD integration.
- Conduct regular security assessments and penetration test remediation.
Governance, Risk, & Compliance:
- Support compliance with frameworks such as FedRAMP, NIST SP 800-53, 800-171/CMMC, and FISMA.
- Document remediation processes and compliance evidence.
- Recommend improvements to security policies.
Collaboration & Leadership:
- Partner with cross-functional teams for timely, risk-based remediation.
- Provide mentorship to junior security engineers and analysts.
- Participate in client meetings as a subject matter expert.
Qualifications
Required:
- U.S. Citizenship and ability to obtain/maintain Public Trust clearance.
- Bachelor’s degree in Computer Science, Cybersecurity, or equivalent experience.
- Experience in vulnerability management, security engineering, or penetration testing.
- Strong IT, networking, and cloud (AWS preferred) knowledge.
- Proficiency in security automation and scripting (Python, PowerShell, Bash).
- Excellent analytical, problem-solving, and communication skills.
- Background check and unannounced drug testing required.
Preferred:
- Certifications such as CISSP, CISM, OSCP, CEH, Security+, or AWS Security Specialty.
- Experience with compliance frameworks (FedRAMP, NIST 800-53, CMMC).
- Background in DevSecOps practices and automation.
Work Arrangement
This position is onsite in Washington, DC with occasional travel (up to 25%).
Key skills/competency
- Vulnerability Management
- Threat Intelligence
- Cybersecurity
- Risk Analysis
- Security Engineering
- Automation
- Compliance
- DevOps
- Penetration Testing
- Technical Leadership
How to Get Hired at C2 Labs, Inc
🎯 Tips for Getting Hired
- Customize your resume: Highlight security engineering, compliance, and automation skills.
- Research C2 Labs: Understand their IT transformation and cybersecurity focus.
- Tailor your application: Emphasize vulnerability management and leadership.
- Prepare for interviews: Practice technical and behavioral questions on cybersecurity.
📝 Interview Preparation Advice
Technical Preparation
circle
Practice scripting in Python, PowerShell, or Bash.
circle
Review vulnerability scanning tools like Tenable and Qualys.
circle
Study cloud security principles for AWS and hybrid.
circle
Refresh knowledge on federal compliance frameworks.
Behavioral Questions
circle
Describe a challenging vulnerability remediation experience.
circle
Explain collaboration with cross-functional technical teams.
circle
Discuss leadership of junior engineer mentorship.
circle
Share time management during high-risk security incidents.
Frequently Asked Questions
What certifications does C2 Labs prefer for Senior Information Security Engineer Vulnerability Manager?
keyboard_arrow_down
Is U.S. Citizenship required for the Senior Information Security Engineer Vulnerability Manager role at C2 Labs?
keyboard_arrow_down
What technical skills are essential for the Senior Information Security Engineer Vulnerability Manager position?
keyboard_arrow_down
How does C2 Labs integrate vulnerability management with CI/CD pipelines?
keyboard_arrow_down
What is the work arrangement for the Senior Information Security Engineer Vulnerability Manager role?
keyboard_arrow_down