Security Engineer (Tenable / Purview)

Security Engineer (Tenable / Purview)
DETAILS
Location: Remote
Position Type: 6M Contract (w/ likely extensions)
Hourly / Salary: to $90W2+ (based on experience level)

JOB SUMMARY
Vaco is currently seeking a Security Engineer (Tenable / Purview) for a 6M Contract opportunity that is 100% remote.  The Security Engineer (Tenable / Purview) must possess strong expertise in Tenable Vulnerability Management to address urgent patching, tooling cleanup, and remediation needs by the end of March, including hands-on work to stabilize and operationalize the vulnerability management process for repeatability and efficiency.  The Security Engineer (Tenable / Purview) will also provide more broad information security engineering support across multiple 2025 roadmap projects involving security tooling, including MS Purview initiatives encountering issues that require attention and 2+ Trellix SIEM-related initiatives.  The Security Engineer (Tenable / Purview) will work closely and collaboratively with internal leads to supplement the existing team capacity rather than replace skill gaps.  The ideal Security Engineer (Tenable / Purview) must be capable of making a quick impact on Tenable-focused priorities while contributing to Purview and other security areas.

• Tenable Platform Engineering – Design / Deploy Enterprise Tenable Scanning Templates / Credentialed Scan Configurations / Custom Plugins to Achieve 95%+ Asset Coverage / Reduce False Positives by 30%+
• Vulnerability Remediation Automation – Build Automated Remediation Workflows in Tenable One Triggering ServiceNow Tickets / Patch Orchestration (SCCM / InTune) / Risk-Based Exception Approval Routing
• Vulnerability Reporting / Governance – Create Executive-Level Vulnerability Dashboards / Trend Reports Quantifying Risk Reduction / Mean-Time-to-Remediate / Compliance Posture for Leadership Reviews
• Purview DLP Optimization – Lead Root-Cause Analysis / Configuration Remediation for MS Purview DLP / Sensitivity Labeling Policies Generating Excessive Alerts or Blocking Legitimate Workflows
• Data Protection Architecture – Architect / Implement MS Purview Information Protection Solutions | Auto-Labeling / Endpoint DLP / Encryption at REST Aligned with 2025 Data Classification and Regulatory Requirements
• SIEM / Detection Engineering – Develop / Tune Trellix SIEM Correlation Rules / Use-Case Playbooks / SOAR Automations Integrating Tenable Vulnerability Data With Purview Audit Logs
• Security Platform Integration – Drive API-Level Integrations Across Tenable / MS Purview / Trellix SIEM / ITSM / Identity Platforms to Enable Closed-Loop Remediation
• Knowledge Transfer / Documentation – Deliver Hands-On Workshops and Develop Operational Runbooks to Enable Internal Teams to Sustain Vulnerability Management / Purview Operations

 
JOB REQUIREMENTS

• Vulnerability Management Platform – Tenable One (Tenable.io) | Asset Discovery / Policy Creation / Plugin Customization / API Automation / Tenable Lumin Exposure Scoring
• Scanning Infrastructure – Tenable Nessus Scanners (OnPrem / Cloud) / Nessus Agent Deployment at Scale
• SIEM / Security Analytics – Trellix SIEM / Helix (Rule Authoring / Dashboard Creation / Log Source Onboarding / SOAR Playbook Development)
• Automation – PowerShell / Python for Tenable API Automation / Purview Policy Deployment / SIEM Enrichment
• Identity Security – MS Entra ID (Conditional Access / PIM / Identity Protection Features)
• Security Integrations – RESTful API Integration Across Platforms (Tenable / Purview Graph API / Trellix API)
• ITSM Integration – ServiceNow for Vulnerability Ticket Lifecycle Automation
• Risk Scoring / Prioritization (knowledge) – Vulnerability Scoring Frameworks (CVSS 4.0 / EPSS / CISA KEV) / Risk-Based Prioritization Methodologies

 
PREFERRED (not required)

• Data Security / Compliance – MS Purview Compliance / Risk Suite (DLP / Sensitivity Labeling / Auto-Labeling / Information Protection [MIP] / Insider Risk Management / Purview Audit)
• Purview Policy Deployment
• Root-Cause Analysis / Configuration Remediation for MS Purview DLP

 
Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan. Additional disclaimer: Unless otherwise noted in the job description, the position Vaco/Highspring is filing for is occupied. Please note, however, that Vaco/Highspring is regularly asked to provide talent to other organizations. By submitting to this position, you are agreeing to be included in our talent pool for future hiring for similarly qualified positions. Submissions to this position are subject to the use of AI to perform preliminary candidate screenings, focused on ensuring minimum job requirements noted in the position are satisfied. Further assessment of candidates beyond this initial phase within Vaco/Highspring will be otherwise assessed by recruiters and hiring managers. Vaco/Highspring does not have knowledge of the tools used by its clients in making final hiring decisions and cannot opine on their use of AI products.