FreeHire

Citizens Financial Group

Senior Vulnerability Specialist (Infra)

Show

Senior Security Automation Engineer, Vulnerability Management

Summary
Senior Security Automation Engineer responsible for advancing the enterprise Vulnerability Management program through automation, orchestration, and process optimization. Focus on improving efficiency, scalability, and data quality across infrastructure, cloud, and application environments. Partner with Vulnerability Management, Engineering, Infrastructure, Cloud, and ServiceNow teams to enable risk based remediation at scale.

Key Responsibilities

Security Automation and Engineering
• Design, build, and maintain automation solutions supporting enterprise Vulnerability Management
• Develop integrations across vulnerability management platforms, ServiceNow, cloud environments, CMDB, reporting systems, and security tools
• Automate vulnerability intake, enrichment, correlation, prioritization, assignment, exception handling, and remediation tracking
• Reduce manual processes through scripting, APIs, orchestration, and workflow automation

Platform and Workflow Optimization
• Improve and optimize Vulnerability Management workflows and operational processes
• Build automated dashboards, metrics, and reporting for operational and executive stakeholders
• Identify process bottlenecks and implement scalable automation solutions
• Enhance asset inventory correlation, remediation validation, SLA tracking, and risk based prioritization

Data Engineering and Integration
• Develop and maintain scripts, APIs, and data pipelines supporting vulnerability data normalization and enrichment
• Integrate security platforms including Qualys, Tenable, Wiz, ServiceNow, and cloud technologies
• Ensure data accuracy, consistency, and reliability across platforms and reporting systems
• Support data analysis and reporting for regulatory, audit, and operational requirements

Collaboration and Continuous Improvement
• Partner with infrastructure, cloud, engineering, and security teams to improve remediation workflows and maturity
• Support automation aligned with DevSecOps and enterprise modernization initiatives
• Research emerging technologies and identify opportunities for automation and scalability
• Participate in troubleshooting, root cause analysis, and continuous improvement across the Vulnerability Management ecosystem

Qualifications

Required Experience and Skills
• 5+ years of experience in cybersecurity engineering, security automation, or Vulnerability Management
• Strong scripting skills using Python, PowerShell, Bash, or similar languages
• Experience integrating security tools and workflows using APIs and automation platforms
• Familiarity with Qualys, Tenable, Rapid7, Wiz, and ServiceNow
• Strong understanding of Vulnerability Management processes and remediation workflows
• Knowledge of cloud platforms, REST APIs, and automation best practices
• Strong analytical, troubleshooting, and communication skills

Preferred Experience
• Experience with ServiceNow SecOps or Vulnerability Response
• Familiarity with DevSecOps, CI CD pipelines, and infrastructure as code
• Experience with cloud and container security technologies
• Knowledge of regulatory frameworks such as PCI DSS, NIST, or FFIEC
• Experience in large enterprise or regulated environments

Education and Certifications
• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related field, or equivalent experience
• Certifications such as CISSP, Security+, GSEC, GCSA, or cloud security certifications preferred

Pay Transparency

The salary range for this position is from $96,000 to $135,000 per year, plus an opportunity to earn an annual discretionary bonus. Actual pay is based on various factors including but not limited to, the budget, work location, relevant skills, and experience.

We offer competitive pay, comprehensive medical, dental, and vision coverage, retirement benefits, maternity and paternity leave, flexible work arrangements, education reimbursement, wellness programs, and more. Citizens’ paid time off policy exceeds the mandatory paid sick or paid time away policies of local and state jurisdictions in the United States. For an overview of our benefits, visit our Careers site - https://jobs.citizensbank.com/benefits

#LI-Citizens1