Vulnerability Management-Cyber Security Engineer

				Overview:

* Salary Range $129,000K-$134,000K Range 
* Check out our careers site Benefits | GMR Careers to learn more about our comprehensive benefit options, which include medical, vision, dental, 401k, disability, FSA, HSA, EAP, vacation and paid time off.
* The application window for this position is anticipated to close on 7.25.2025

Responsibilities:

Cybersecurity Engineer - Vulnerability Management 

Greenwood Village, CO.

$129000K-$134000K

Why Choose GMR? Global Medical Response (GMR) and its family of solutions are dedicated to delivering compassionate, quality medical care, primarily in the areas of emergency and patient relocation services. Here you'll embark in meaningful work that will make an impact on you and the customers we serve. View our employees' stories on how we provide care to the world at www.AtaMomentsNotice.com.

Position Overview

We are seeking a highly motivated and emotionally intelligent Cybersecurity Engineer to lead and evolve our enterprise Vulnerability Management Program. This individual will oversee the full vulnerability lifecycle-including detection, reporting, coordination, and risk mitigation-across both internal assets and third-party environments.

The ideal candidate possesses strong technical skills and a calm, professional communication style, including the ability to navigate difficult conversations and competing priorities with stakeholders. Success in this role requires empathy, sound judgment, and the ability to resolve conflict while driving risk-reduction outcomes in a collaborative and fast-paced environment.

Key Responsibilities

Vulnerability Management Program Leadership

* Administer and optimize the Tenable One platform across the enterprise.
* Coordinate with Infrastructure for agent deployment, health, and coverage.
* Plan and execute scans, including scheduling exception-based or risk-prioritized systems.
* Lead monthly meetings with Tenable and present program health and KPIs.
* Deliver monthly vulnerability briefings to technical teams and executive leadership.

Asset Intelligence & Integration

* Manage the Armis platform and serve as the point of contact for vendor collaboration.
* Conduct monthly reviews with Armis to enhance asset intelligence and vulnerability mapping.
* Process and maintain Unique Identifier requests to ensure accurate asset-tracking.

Penetration Testing & Risk Validation

* Lead third-party penetration testing engagements:
* Create and manage RFQs and vendor selection.
* Define scope and schedule scans on critical systems.
* Oversee report delivery and develop executive-ready summaries.

* Manage internal penetration testing efforts:
* Coordinate test execution with system administrators.
* Consolidate and communicate findings through dashboards and reports.

Task & Workflow Administration

* Administer ServiceNow workflows for vulnerability tracking, exceptions, and escalations.
* Partner with IT and security teams to ensure accountability and timely remediation.

Remediation, Reporting & Cross-Functional Collaboration

* Collaborate across Infrastructure, Application, and SOC teams to prioritize and remediate vulnerabilities.
* Maintain vulnerability metrics, SLA dashboards, and audit documentation.
* Participate in security storytelling and risk communications to leadership.

Minimum Qualifications

* 3+ years in cybersecurity engineering, vulnerability management, or related roles.
* Proficient in Tenable One (or equivalent platforms), including scan orchestration and agent health.
* Experience managing both internal and third-party penetration testing engagements.
* Familiarity with asset intelligence tools such as Armis.
* Strong working knowledge of CVSS, EPSS, and vulnerability prioritization models.
* Deep understanding of cybersecurity frameworks (e.g., NIST 800-53, 800-171, CIS).
* Exceptional communication and conflict resolution skills, especially with technical and non-technical stakeholders.

Preferred Qualifications

* Security certifications such as: CompTIA Security+, CySA+, GCIH, OSCP.
* Experience in regulated environments (e.g., DoD, healthcare, emergency services).

What We Offer

* Lead a high-impact, nationally visible cybersecurity program.
* Remote work with National Impact.
* Strategic influence and autonomy in a mission-driven organization.

To learn more about GMR and how our values are at the core of our services and vital to how we approach care, visit www.GlobalMedicalResponse.com.

Qualifications:

Global Medical Response and its family of companies are an Equal Opportunity Employer, which includes supporting veterans and providing reasonable accommodations for individuals with a disability.
			

Apply

Share this job:

Share this Job

View company profile

Global Medical Response

Connect To Our Company