ZipRecruiter

Log In

1

Vulnerability Management Automation Engineer Jobs

Lumin Digital

Vulnerability Automation Engineer

Basic Function Lumin Digital is building a Vulnerability Automation Engineering team that eliminates the traditional vulnerability management ticket queue entirely. As a Vulnerability Automation ...

Keeper Security

Senior Vulnerability Engineer

$117.20K - $160.70K/yr

... management, automation, and offensive security initiatives. About Keeper Keeper Security is one of the fastest-growing cybersecurity software companies that protects thousands of organizations and ...

nLeague

Vulnerability Management Engineer

Atlanta, GA · On-site

Vulnerability Management Engineer Client: ATL - AIM General Location: 55 Trinity Avenue, Suite G700 ... Tooling & Automation · Operate and tune vulnerability scanning and endpoint management tools (e.g ...

RennerBrown Staffing

Be Seen First

Cyber Security Engineer - Vulnerability Management

New York, NY · On-site

$165K - $175K/yr

Senior Cybersecurity Engineer - Vulnerability Management & Incident Response Position Overview Our ... Develop automation and process improvements that increase operational efficiency and security ...

New

IBM

Automation Engineer

Annapolis Junction, MD · On-site

... Vulnerability Management (IAVM) process, or equivalent industry‑standard system hardening practices. • Experience automating Kubernetes cluster deployments in enterprise environments. • ...

IBM

Automation Engineer

Hampton, VA · On-site

... Vulnerability Management (IAVM) process, or equivalent industry‑standard system hardening practices. • Experience automating Kubernetes cluster deployments in enterprise environments. • ...

next page

Showing results 1-20

People also search for

All JobsVulnerability Management Automation Engineer Jobs

Vulnerability Management Automation Engineer information

See salary details

$37K

$107.1K

$163K

How much do vulnerability management automation engineer jobs pay per year?

As of May 31, 2026, the average yearly pay for vulnerability management automation engineer in the United States is $107,126.00, according to ZipRecruiter salary data. Most workers in this role earn between $86,500.00 and $123,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Vulnerability Management Automation Engineer, and why are they important?

To thrive as a Vulnerability Management Automation Engineer, you need expertise in cybersecurity, scripting languages (such as Python or PowerShell), and a strong understanding of vulnerability assessment methodologies, often supported by a degree in computer science or information security. Familiarity with vulnerability scanning tools (like Nessus or Qualys), security information and event management (SIEM) systems, and certifications such as CISSP or CEH are typically required. Strong problem-solving skills, attention to detail, and effective communication help you identify risks and collaborate with cross-functional teams. These skills are crucial for proactively identifying, automating the remediation of security weaknesses, and protecting organizational assets from cyber threats.

What are some common challenges faced by Vulnerability Management Automation Engineers when integrating automated tools into existing security workflows?

A common challenge for Vulnerability Management Automation Engineers is ensuring that automated tools seamlessly integrate with legacy systems and current security processes without causing disruptions. Balancing automation efficiency with accuracy is crucial, as automated scans can sometimes generate false positives or miss context-specific vulnerabilities. Additionally, coordinating with cross-functional teams, such as IT and DevOps, is essential to align remediation efforts and establish clear communication channels. Staying updated with the latest threat landscapes while continuously refining automation scripts also presents an ongoing challenge.

What does a Vulnerability Management Automation Engineer do?

A Vulnerability Management Automation Engineer designs, develops, and maintains automated solutions to identify, assess, and remediate security vulnerabilities within an organization's systems and networks. They work closely with security and IT teams to streamline vulnerability scanning, reporting, and patch management processes. Their goal is to reduce manual work, improve efficiency, and ensure timely mitigation of security risks by leveraging automation tools and scripting. This role requires strong technical skills in cybersecurity, automation technologies, and familiarity with vulnerability management platforms.

What is the difference between Vulnerability Management Automation Engineer vs Vulnerability Analyst?

AspectVulnerability Management Automation EngineerVulnerability Analyst
CertificationsCompTIA Security+, CISSP, or similarCompTIA Security+, GIAC, or similar
Work EnvironmentFocus on automation tools, scripting, and security systemsFocus on vulnerability assessment, analysis, and reporting
Industry UsageIT security teams, cybersecurity firms, large enterprisesSecurity operations centers, IT departments, consulting firms

The Vulnerability Management Automation Engineer primarily develops and maintains automation tools to streamline vulnerability detection and remediation, utilizing scripting and security platforms. In contrast, the Vulnerability Analyst conducts manual assessments, analyzes vulnerabilities, and reports findings. Both roles are essential in cybersecurity but differ in technical focus and daily tasks.

More about Vulnerability Management Automation Engineer jobs
What job categories do people searching Vulnerability Management Automation Engineer jobs look for? The top searched job categories for Vulnerability Management Automation Engineer jobs are:
Vulnerability Management Automation Engineer jobs near you
Infographic showing various Vulnerability Management Automation Engineer job openings in the United States as of May 2026, with employment types broken down into 100% Full Time. Highlights an 25% Physical, and 75% Remote job distribution, with an average salary of $107,126 per year, or $51.5 per hour.
Vulnerability Automation Engineer

Vulnerability Automation Engineer

Lumin Digital

Remote

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 26 days ago

Job description

Basic Function
Lumin Digital is building a Vulnerability Automation Engineering team that eliminates the traditional vulnerability management ticket queue entirely. As a Vulnerability Automation Engineer, you will design, build, and operate lights-off pipelines that continuously discover assets, assess posture, scan for vulnerabilities, harden configurations, and auto-remediate findings across cloud-native and infrastructure-as-code environments. You will leverage AI-assisted engineering tools, including agentic coding assistants like Claude Code, to build secure, autonomous workflows that replace manual coordination with engineered solutions. This role exists for engineers who teach organizations how to operate, not the other way around. Success means vulnerabilities are resolved before a human ever needs to read about them.
Essential Functions and Responsibilities:
  • Design and implement end-to-end vulnerability automation pipelines that continuously discover assets, assess configurations, identify vulnerabilities, and execute or orchestrate remediation, without manual ticketing or human-in-the-loop coordination.
    • >
  • Build and maintain agentic AI workflows using tools such as Claude Code and MCP-based integrations to automate security engineering tasks, including code review for vulnerability patterns, configuration drift detection, and patch deployment across cloud-native environments.
    • >
  • Engineer new and enhance existing automated asset discovery and inventory systems that maintain a real-time, authoritative view of all infrastructure, services, and endpoints across environments, including ephemeral and containerized workloads.
    • >
  • Develop and operationalize automated configuration hardening pipelines that enforce security baselines (CIS Benchmarks, internal standards) as code, with drift detection and auto-remediation capabilities.
    • >
  • Create and maintain infrastructure-as-code templates, policy-as-code rules, and automated playbooks that embed security controls directly into deployment pipelines, preventing or resolving vulnerabilities at build time rather than discovering them post-deployment.
    • >
  • Build self-service remediation tooling and agentic support systems that empower development and infrastructure teams to resolve security findings autonomously, reducing cross-team dependencies and accelerating mean time to remediation.
    • >
  • Integrate vulnerability data sources (scanners, SCA tools, cloud-native security services, threat intelligence feeds) into unified automation platforms, normalizing and enriching findings to drive intelligent prioritization and automated response.
    • >
  • Develop metrics, dashboards, and automated reporting that provide real-time visibility into vulnerability posture, remediation velocity, and automation coverage, enabling leadership to measure program effectiveness without manual evidence gathering.
    • >
  • Collaborate with product, engineering, operations, and other risk teams to embed vulnerability automation into CI/CD pipelines, infrastructure provisioning workflows, and operational runbooks.
    • >
  • Perform other duties as assigned.
    • >

Physical Demands:
  • While performing the duties of this Job, the employee is regularly required to sit; use hands to type, handle, or feel and talk or hear
    • >
  • Specific vision abilities required by this job include close vision
    • >
  • Ability to occasionally lift/move up to 25 pounds
    • >
  • Individuals with a disability who are otherwise able to perform the essential functions of the job may request reasonable accommodation through the Human Resources department.
    • >

Supervisory Responsibility:
  • None.
    • >

Position Specifications
Education:
  • Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or a related field; or equivalent combination of education and demonstrated engineering experience in vulnerability lifecycle management and security automation.
    • >
  • Industry certifications that demonstrate hands-on technical depth are valued but not required. Relevant examples include: GPYC, GPEN, GXPN, AWS Security Specialty, GCP Professional Cloud Security Engineer, CKS (Certified Kubernetes Security Specialist), or HashiCorp Terraform Associate.
    • >

Experience:
  • 5+ years of hands-on experience in security engineering, DevSecOps, vulnerability management, or infrastructure automation, with a strong emphasis on building automated systems rather than operating manual processes.
    • >
  • Demonstrated experience building and shipping automation pipelines in production environments using Python, Go, Bash, or similar languages, with infrastructure-as-code tools such as Terraform.
    • >
  • Proven track record of working in cloud-native environments with deep familiarity in containerized workloads, Kubernetes, serverless architectures, and CI/CD pipeline integration.
    • >
  • Experience with vulnerability scanning and security assessment platforms (e.g., Tenable, Qualys, Wiz, Snyk, Trivy, Grype, or cloud-native equivalents) and the ability to integrate them programmatically into automated workflows.
    • >

Knowledge, Skills, & Abilities:
  • Deep understanding of vulnerability classes (OWASP Top 10, CWE, CVE/CVSS, EPSS) and modern prioritization frameworks that go beyond raw CVSS scores to factor exploitability, asset criticality, and business context.
    • >
  • Proficiency with AI-assisted development tools (Claude Code, GitHub Copilot, or similar agentic coding assistants) and the ability to design, prompt-engineer, and orchestrate AI agents for security automation workflows.
    • >
  • Strong software engineering fundamentals: version control (Git), code review, testing, CI/CD, API design, and the ability to write production-quality, maintainable code-not just scripts.
    • >
  • Hands-on experience with cloud security tooling and APIs (AWS Config, GuardDuty, Inspector, Security Hub), container security.
    • >
  • Familiarity with security data engineering concepts: API and database integration, data normalization, and building automated evidence-collection pipelines for compliance and audit support.
    • >
  • Excellent written and verbal communication skills, with the ability to translate complex automation architectures into clear documentation, runbooks, and knowledge-transfer materials for cross-functional teams.
    • >
  • Self-directed engineering mindset with a bias toward action, a low tolerance for manual toil, and a drive to eliminate recurring work through automation. You see a repeated manual process as a bug, not a task.
    • >
  • Nice to have: Experience with MCP (Model Context Protocol) integrations, building custom AI tool-use pipelines, or contributing to open-source security automation projects.
    • >

Travel:
  • Minimal, generally 12 days or less per year, ~2X team get-togethers a year
    • >

$170,000 - $190,000 a year
LIFE AT LUMIN DIGITAL
Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. We empower credit unions and banks by creating cutting-edge digital experiences that continuously serve, engage, and grow their membership base - and as a 100% cloud-native company, we're purpose-built to unlock the full advantages of the cloud for financial institutions and their users.
At Lumin, we thrive on curiosity and innovation. Our culture is built on trust in our expertise and decisions, respect for diverse perspectives and talents, and boldness in pursuing new ideas. These values shape a workplace where collaboration thrives, ideas flourish, and new possibilities are discovered every day. We encourage our team to explore, experiment, and challenge the status quo - because continuous improvement isn't just a goal, it's how we operate.
Benefits include: We take care of our people with medical, dental, and vision insurance, a 401(k) with company match, flexible PTO plus 12 paid holidays, paid sick leave, and paid parental and family leave. We also offer a lifestyle spending account, tuition reimbursement, and a cell phone stipend. Additional details are provided during the interview process.
Lumin Digital is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity, or any other legally protected basis. For more information, visit lumindigital.com.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Apply