Senior Information Security Engineer Vulnerabil...
@ C2 Labs, Inc

District of Columbia, United States
$150,000
On Site
Posted 24 days ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXXXXXX XXXXXX****** @c2labs.com
Recommended after applying

Job Details

Overview

C2 Labs, Inc. partners with clients on their IT transformation journey through full stack development, hyper-automation/DevOps, and cybersecurity compliance. The position offers leadership in managing and mitigating security vulnerabilities, integrating threat intelligence, and automating compliance.

Responsibilities

Vulnerability & Threat Management:

  • Manage enterprise vulnerability platforms (Tenable, Qualys, Rapid7).
  • Perform risk-based vulnerability analysis and develop mitigation plans.
  • Integrate threat intelligence to prioritize issues.
  • Establish KPIs and executive dashboards.

Security Engineering:

  • Design and maintain security controls across networks, endpoints, and cloud environments.
  • Automate security operations using Python, PowerShell, Bash, or AWS Lambda.
  • Collaborate with IT and DevOps for CI/CD integration.
  • Conduct regular security assessments and penetration test remediation.

Governance, Risk, & Compliance:

  • Support compliance with frameworks such as FedRAMP, NIST SP 800-53, 800-171/CMMC, and FISMA.
  • Document remediation processes and compliance evidence.
  • Recommend improvements to security policies.

Collaboration & Leadership:

  • Partner with cross-functional teams for timely, risk-based remediation.
  • Provide mentorship to junior security engineers and analysts.
  • Participate in client meetings as a subject matter expert.

Qualifications

Required:

  • U.S. Citizenship and ability to obtain/maintain Public Trust clearance.
  • Bachelor’s degree in Computer Science, Cybersecurity, or equivalent experience.
  • Experience in vulnerability management, security engineering, or penetration testing.
  • Strong IT, networking, and cloud (AWS preferred) knowledge.
  • Proficiency in security automation and scripting (Python, PowerShell, Bash).
  • Excellent analytical, problem-solving, and communication skills.
  • Background check and unannounced drug testing required.

Preferred:

  • Certifications such as CISSP, CISM, OSCP, CEH, Security+, or AWS Security Specialty.
  • Experience with compliance frameworks (FedRAMP, NIST 800-53, CMMC).
  • Background in DevSecOps practices and automation.

Work Arrangement

This position is onsite in Washington, DC with occasional travel (up to 25%).

Key skills/competency

  • Vulnerability Management
  • Threat Intelligence
  • Cybersecurity
  • Risk Analysis
  • Security Engineering
  • Automation
  • Compliance
  • DevOps
  • Penetration Testing
  • Technical Leadership
Apply without a personalized resume

How to Get Hired at C2 Labs, Inc

🎯 Tips for Getting Hired

  • Customize your resume: Highlight security engineering, compliance, and automation skills.
  • Research C2 Labs: Understand their IT transformation and cybersecurity focus.
  • Tailor your application: Emphasize vulnerability management and leadership.
  • Prepare for interviews: Practice technical and behavioral questions on cybersecurity.

📝 Interview Preparation Advice

Technical Preparation

Practice scripting in Python, PowerShell, or Bash.
Review vulnerability scanning tools like Tenable and Qualys.
Study cloud security principles for AWS and hybrid.
Refresh knowledge on federal compliance frameworks.

Behavioral Questions

Describe a challenging vulnerability remediation experience.
Explain collaboration with cross-functional technical teams.
Discuss leadership of junior engineer mentorship.
Share time management during high-risk security incidents.

Frequently Asked Questions