Cloud Vulnerability Remediation Engineer

ASSYST is seeking a Cloud Vulnerability Remediation Engineer to support our client project in Austin, TX.

This position is Hybrid.

Scope of work:

• The resource will patch and complete vulnerability remediation as they are essential to protect systems, reduce organizational risk, maintain compliance, and ensure reliable operations.
• This asset will provide vulnerability management and compliance to the client’s cloud environment.
• The Cloud Vulnerability Remediation Engineer is responsible for identifying, assessing, and remediating security vulnerabilities in cloud environments to reduce enterprise risk and maintain compliance with established security policies.
• This role focuses on vulnerability remediation activities across cloud infrastructure and platform services, coordinating patching, configuration changes, and compensating controls in alignment with approved vulnerability management and change management processes.
• The role works closely with Cloud Operations, Security, Application, and Risk teams to ensure vulnerabilities are remediated within required timelines and that cloud workloads remain secure, stable, and compliant.

Key Responsibilities:

• Review and analyze vulnerability findings affecting cloud hosted resources identified through approved scanning and security tools.
• Assess vulnerability applicability and risk impact for cloud infrastructure, platform services, and supporting components.
• Plan and execute remediation actions, including patching, configuration changes, and security hardening, in accordance with established remediation timelines.
• Validate remediation results and confirm successful closure of assigned vulnerability tasks.
• Perform cloud-based patching and update activities for supported workloads using approved processes.
• Implement cloud security configuration changes required to reduce exposure where vendor patches are unavailable.
• Create, update, and maintain remediation tasks and change records in the system of record to support audit and compliance requirements.
• Ensure remediation activities follow established change management, approval, and validation processes.
• Provide remediation status updates and evidence for security reporting, audits, and leadership reviews.
• Support remediation efforts that require temporary mitigations or compensating controls when permanent fixes are not immediately available
• Partner with Security, Cloud Architecture, and Application teams to resolve complex or cross platform vulnerabilities.
• Identify recurring issues, remediation blockers, or process gaps and recommend improvements.
• Support enterprise efforts to reduce technical debt and improve cloud security posture over time.

Required Experience:

• Professional IT experience, with hands on exposure to cloud infrastructure, system administration, or vulnerability remediation.
• Experience supporting cloud hosted systems in at least one enterprise cloud environment.
• Understanding of vulnerability remediation concepts, including patching, configuration hardening, and compensating controls.
• Familiarity with IT service management and change processes.
• Strong analytical and documentation skills.
• Ability to follow defined security and remediation procedures.
• Effective communication and collaboration skills.

Preferred experience:

• Exposure to enterprise vulnerability management processes and remediation SLAs.
• Knowledge of cloud security posture management, security baselines, or risk reporting.
• Relevant cloud or security certifications.

ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law