Vulnerability Research Jobs

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, conducting vulnerability scans and penetration testing, and implementing automated security frameworks using scripting languages. Key responsibilities include designing CI/CD pipelines, automating infrastructure provisioning with tools like Terraform and Ansible, and maintaining compliance through rigorous patch management and access control. The role is appealing due to its focus on cutting-edge cloud technologies and the opportunity to work with advanced security models like Zero Trust. Candidates will engage in a collaborative environment that values continuous improvement and innovation. The position requires an active Top Secret clearance and involves occasional travel of 10% to 20%.

This DevSecOps Engineer role supports a specialized team within Technology and Consulting Services, focusing on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position also involves maintaining compliance, managing access controls, and automating infrastructure provisioning with technologies like Kubernetes and Terraform. The role appeals to candidates seeking to work with cutting-edge cloud security solutions and CI/CD pipelines in a mission-driven environment. It requires an active Top Secret clearance and offers opportunities for professional growth through exposure to major cloud platforms and advanced automation tools, with a work arrangement that includes occasional travel.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, vulnerability scanning, and penetration testing while implementing automated security frameworks and CI/CD pipelines. Key responsibilities include designing infrastructure as code solutions, maintaining proxy servers and firewalls, and conducting risk assessments to ensure compliance with strict security protocols. The role appeals to professionals seeking to leverage advanced cloud and containerization technologies in a mission-critical setting. It offers opportunities for continuous learning in emerging security trends and requires a Top Secret clearance with eligibility for SCI. The position includes limited travel and supports a collaborative environment dedicated to robust network and application security.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position involves designing secure deployment processes, maintaining network infrastructure, and performing root cause analysis for security issues. The role appeals to candidates seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. It requires an active Top Secret clearance and offers opportunities for professional growth through the use of modern CI/CD pipelines and containerization. The position includes limited travel requirements and supports a collaborative culture focused on continuous improvement and system reliability.

This DevSecOps Engineer role supports a specialized team within Maximus TCS, focusing on integrating security practices into development and operations workflows. The position involves managing incident response, conducting vulnerability scans and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. Key responsibilities include designing secure deployment pipelines, maintaining infrastructure as code, and performing root cause analysis on network security issues. The role offers the opportunity to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. Candidates must hold an active Top Secret clearance and possess significant experience in IT security. The position requires occasional travel and offers a collaborative setting for professionals dedicated to advancing cloud site reliability and security standards.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages. Key responsibilities include designing CI/CD pipelines, automating infrastructure provisioning with tools like Terraform and Ansible, and maintaining compliance through rigorous security procedures. The role is appealing due to its opportunity to work with cutting-edge cloud technologies and containerization while contributing to critical national security missions. Candidates will collaborate on building resilient systems and enjoy a culture that values continuous improvement and automation. The position requires active Top Secret clearance and involves limited travel, offering a challenging environment for experienced professionals in the field.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, vulnerability scanning, and penetration testing while designing automated security frameworks using scripting languages and open-source tools. Key responsibilities include implementing CI/CD pipelines, automating infrastructure provisioning with tools like Terraform and Ansible, and maintaining compliance through rigorous network security analysis and patch management. The role is appealing for professionals seeking to leverage advanced cloud technologies and containerization in a mission-critical setting. It offers opportunities to work with cutting-edge security models and requires a Top Secret clearance. The position includes limited travel and supports a collaborative environment dedicated to robust system reliability and security.

This DevSecOps Engineer role within the Technology and Consulting Services department focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages. The position also involves designing CI/CD pipelines, maintaining infrastructure as code, and ensuring compliance through rigorous network security analysis. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. The role requires an active Top Secret clearance and offers a hybrid work arrangement with occasional travel.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages. The position also involves designing secure deployment processes, maintaining network infrastructure, and performing root cause analysis for security issues. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. The role requires active Top Secret clearance and offers a hybrid work arrangement with occasional travel for on-site collaboration.

This DevSecOps Engineer role supports a specialized team within Technology and Consulting Services, focusing on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position also involves maintaining compliance, managing access controls, and automating infrastructure provisioning with tools like Terraform and Ansible. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and CI/CD pipelines in a collaborative environment. The role requires an active Top Secret clearance and offers a hybrid work arrangement with occasional travel.

This full-time DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position also involves designing secure deployment processes, maintaining network infrastructure, and performing root cause analysis for security issues. The role is appealing for its opportunity to work with cutting-edge cloud technologies and automation tools while contributing to critical security operations. Candidates must hold an active Top Secret clearance and possess significant experience in IT security. The position requires occasional travel and offers a collaborative environment for professionals dedicated to advancing cloud site reliability and security standards.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position involves designing secure deployment processes, maintaining infrastructure as code, and performing root cause analysis on network security issues. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. The role requires an active Top Secret clearance and offers a hybrid work arrangement with occasional travel. It is ideal for experienced engineers looking to advance their skills in CI/CD pipelines, containerization, and zero-trust security models.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position involves designing secure deployment processes, maintaining infrastructure as code, and performing root cause analysis for network security issues. The role appeals to candidates seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. It requires an active Top Secret clearance and offers opportunities for professional growth through the use of advanced CI/CD pipelines and containerization. The position includes limited travel requirements and supports a collaborative culture focused on continuous improvement and operational excellence.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for government IT systems. The position involves managing incident response, conducting vulnerability scans and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. Key responsibilities include designing CI/CD pipelines, automating infrastructure provisioning with tools like Terraform and Ansible, and maintaining compliance through rigorous security procedures. The role appeals to candidates seeking to work with cutting-edge cloud technologies and containerization in a mission-driven environment. It requires an active Top Secret clearance and offers opportunities for professional growth through exposure to advanced security models and diverse cloud platforms. The position includes limited travel and supports a collaborative culture focused on reliability and innovation.

This DevSecOps Engineer role supports the Technology and Consulting Services team within a defense-focused environment. The position involves managing incident response, vulnerability scanning, and compliance efforts while implementing automated security testing tools. Key responsibilities include designing automated security frameworks, performing penetration testing and code reviews, and maintaining network infrastructure such as firewalls and proxy servers. The role appeals to candidates seeking to leverage advanced cloud and containerization technologies like Kubernetes and AWS within a mission-critical setting. It offers opportunities for professional growth through the use of modern CI/CD pipelines and infrastructure as code. The position requires a Top Secret clearance and involves occasional travel.

The Information Security Analyst role supports the IT Security team at Randolph-Brooks Federal Credit Union in maintaining data security controls and regulatory compliance. Key responsibilities include planning and implementing security updates for operating systems and hardware, identifying vulnerabilities, and assisting with incident resolution and threat hunting. The position offers a hybrid work arrangement combining remote and onsite duties after an initial training period, requiring candidates to reside in Texas with a secure home workspace. This opportunity appeals to professionals seeking to strengthen their skills in a collaborative environment focused on protecting financial data and systems.

This full-time on-site Senior Technician role in Norfolk, VA, supports the cyber security team in maintaining system confidentiality, integrity, and availability. The position involves managing endpoint security, monitoring firewall and network solutions, and conducting vulnerability assessments. Key responsibilities include supporting cyber incident investigations, performing risk assessments, and ensuring compliance with security policies. The role offers the opportunity to work within a critical international defense environment with a NATO SECRET clearance. While the position requires 100% on-site presence with occasional business travel to NATO facilities, it provides a chance to apply technical expertise in a high-impact mission-driven setting.

This Principal Product Security Engineer role supports the newly formed Product Security team within Johnson & Johnson's medical device division. The position focuses on embedding security by design throughout the product lifecycle, from pre-market development to post-market vulnerability management. Key responsibilities include partnering with engineering teams to enforce security policies, creating and improving security processes, and delivering critical documentation such as threat models and risk management plans. The role also involves guiding compliance certification activities and advising development teams on balancing business needs with medical device security objectives. This opportunity appeals to candidates seeking to directly impact patient lives within a Patient First culture. The position is based in Danvers, MA, with a hybrid work arrangement requiring office presence three days per week, though remote options may be considered case-by-case.

This full-time Remediation Security Engineer role within Verizon's GN&T Network Security team focuses on transforming adversary emulation findings into proactive security strategies. The position serves as a strategic bridge between offensive research and defensive design, requiring the engineer to lead deep-dive Root Cause Analysis on recurring vulnerabilities and identify shared technical risks across the network. Key responsibilities include translating validated adversary tactics into actionable mitigation strategies mapped to the MITRE ATT&CK framework, authoring secure-by-default blueprints, and performing rigorous verification of remediation efforts. The role appeals to candidates seeking a collaborative culture that values innovation and continuous learning, offering the opportunity to shape high-level security standards rather than just fixing isolated issues. This hybrid position requires a minimum of three days per week in the office, combining remote flexibility with in-person collaboration.

This senior Data Architect role focuses on designing and maintaining enterprise-scale data architectures specifically for Medicaid claims, eligibility, and care management within the healthcare sector. The position involves establishing data ingestion frameworks, defining governance standards to ensure HIPAA and CMS compliance, and leading cloud-based modernization efforts using platforms like Snowflake or Azure. Key responsibilities include translating complex regulatory requirements into scalable technical solutions, mentoring data engineering teams, and ensuring data quality across high-volume pipelines. The role is appealing for its opportunity to shape critical healthcare infrastructure while working in a fully remote environment with a collaborative culture that values professional growth and technical leadership.

The Senior Systems Engineer role supports a mission-critical analytics platform within a premier national security solutions firm. The position focuses on administering Linux-based high-performance computing environments, managing workload scheduling, and utilizing automation tools like Ansible for system orchestration. Key responsibilities include providing Tier 3 support for complex technical issues, optimizing system performance, and collaborating with data scientists to ensure platform reliability. This opportunity appeals to engineers seeking to work on advanced research initiatives with a focus on security and scalability. The role involves on-call rotations to maintain critical availability and offers a chance to contribute to long-term platform strategy in a collaborative, mission-driven environment.

This Principal Product Security Engineer role supports the newly formed Product Security team within Johnson & Johnson's medical device division. The position focuses on embedding security by design throughout the product lifecycle, from pre-market development to post-market vulnerability management. Key responsibilities include partnering with engineering teams to enforce security policies, creating and improving security processes, and generating critical documentation such as threat models and risk management plans. The role also involves guiding compliance certification activities and advising on balancing business needs with medical device security objectives. This opportunity appeals to candidates seeking to directly impact patient lives within a Patient First culture. The position is based in Danvers, MA or Raritan, NJ, with a hybrid work arrangement requiring office presence at least three days per week.

This Principal Product Security Engineer role supports the newly formed Product Security team within Johnson & Johnson's medical device division. The position focuses on embedding security by design throughout the product lifecycle, from pre-market development to post-market vulnerability management. Key responsibilities include partnering with engineering teams to enforce security policies, creating and improving security processes, and delivering critical documentation such as threat models and risk management plans for regulatory compliance. The role appeals to candidates seeking to directly impact patient lives by shaping industry standards in a collaborative, patient-first culture. While the position is primarily based in Danvers, MA or Raritan, NJ with a requirement to be in-office at least three days per week, remote work options may be considered on a case-by-case basis.

This Principal Product Security Engineer role supports the newly formed Product Security team within Johnson & Johnson's medical device division. The position focuses on embedding security by design throughout the product lifecycle, from pre-market development to post-market vulnerability management. Key responsibilities include partnering with engineering teams to enforce security policies, creating and improving security processes, and delivering critical documentation such as threat models and risk management plans. The role also involves guiding compliance certification activities and advising development teams on balancing business needs with medical device security objectives. This opportunity appeals to candidates seeking to directly impact patient lives within a collaborative, patient-first culture. The position is based in Danvers, MA or Raritan, NJ, with a hybrid work arrangement requiring office presence at least three days per week.

This Principal Product Security Engineer role supports the newly formed Product Security team within Johnson & Johnson's medical device division. The position focuses on embedding security by design throughout the product lifecycle, from pre-market development to post-market vulnerability management. Key responsibilities include partnering with engineering teams to enforce security policies, creating and improving security processes, and delivering critical documentation such as threat models and risk management plans. The role appeals to candidates seeking to directly impact patient lives by shaping industry standards and ensuring compliance with rigorous regulatory frameworks like FDA, ISO 27001, and SOC2. The position is based in Danvers, MA, or Raritan, NJ, with a hybrid work arrangement requiring office presence three days per week, offering a collaborative environment within a Patient First culture.