By Light HQ

Welcome page

Vulnerability Management Security Engineer

Job Locations US-FL-Orlando
Posted Date 1 day ago(5/1/2025 3:52 PM)
ID
2025-10347
# of Openings
1
Category
IT Support
Clearance
None

Company Overview

By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide.

 

Cole Engineering Services (CESI), a By Light company, is recognized as a premier provider of modeling and simulation (M&S) training solutions to the Federal Government and industry. Since 2004, CESI has been at the forefront of developing, maintaining, and integrating simulation-based training, serious gaming, technical services, training and other support in live, virtual, constructive, and gaming (LVCG) domains.  CESI also designs, builds and runs infrastructure, platforms, applications and processes that enable cyber training for the integrated multi-domain force. Our vision is to become a worldwide full spectrum LVCG and cyber training/analysis developer, integrator and services provider.

Position Overview

Cole Engineering (CESI) is looking for a technically proficient Vulnerability Management Security Engineer (VMSE) who will perform critical engineering tasks to develop and maintain the cybersecurity posture of virtual systems for DoD and Corporate stakeholders. Candidates will be responsible for identifying, assessing, prioritizing, and remediate vulnerabilities across our systems, networks, and applications. Candidates will work cross-functionally with IT, DevOps, and Engineering teams to ensure security best practices are implemented and maintained.

Responsibilities

  • Maintain the vulnerability management program for a segment of the corporate virtual network by applying periodic DISA STIG configuration and vulnerability patch updates.
  • Propose justification and mitigating countermeasures to reduce or eliminate the risk level of an identified vulnerability.
  • Track scheduled updates with system owners to ensure compliance with security policies.
  • Develop a report on existing security posture and present monthly to IT leadership.
  • Monitor common vendor security advisories to ensure running systems don’t reach end-of-life.
  • Maintain and Operate security toolsets to comply with NIST SP 800-53A (RMF) and NIST SP 800-171 (CMMC) controls and ensures the protection of computer systems, networks, and information.

Required Experience/Qualifications

  • Technical experience with vulnerability scanning tools (SonarQube, Tenable, Trivy)
  • Technical experience with virtualization solutions (VMware, Hyper-V, RedHat Virtualization)
  • Experience with at least one major scripting language (BASH, PowerShell, Python)
  • Experience with source-code analysis tools and with software development lifecycle approaches.

 

Required Certifications: 

  • A bachelor’s degree and at least one year of professional experience in a cybersecurity role
  • An active Information Security related certification (Security+, CCNA Security, CEH)

 

Special Requirements/Security Clearance

In accordance with the specifications of a government contract, eligibility for this position mandates U.S. Citizenship status and ability to obtain secret clearance.

 

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. The above is intended to describe the general contents of and requirements for the performance of this job.

 

CESI is committed to principles of inclusion and equal employment opportunity.  We foster a non-discriminatory, professional work environment for all our teams.  We do not discriminate based on race, color, religion, sex, pregnancy, sexual orientation, gender identity, genetic information, national origin, age, marital status, disability, or veteran status.

Benefits Overview

CESI recognizes that our strength is our people. We support every employee as an individual to build strong teams across the enterprise.  Our benefit package includes:

  • Medical, Dental & Vision Coverage
  • Wellness Program
  • 401(k) Matching
  • Disability (Short Term & Long Term)
  • Employee Assistance Program
  • Life Insurance
  • Education & Training
  • Generous Leave Policy (11 Federal Holidays, PTO, Military Leave, Bereavement and Jury Duty)

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

By Light recognizes that our strength is our people. We support every employee as an individual to build strong teams across the enterprise. Our benefit package includes:

  • Medical, Dental & Vision Coverage
  • Wellness Program
  • 401(k) Matching
  • Disability (Short Term & Long Term)
  • Employee Assistance Program
  • Life Insurance
  • Education & Training
  • Generous Leave Policy (11 Federal Holidays, PTO, and Military Leave)

By Light is an Equal Opportunity and Affirmative Action Employer. All qualified candidates will receive consideration regardless of gender, race, veteran status, disability, and any other protected class in accordance with federal, state and local laws.