Are you an experienced security professional passionate about vulnerability management and remediation? Mount Indie is seeking a Senior Vulnerability Engineer to support critical security initiatives within the DMDC IT GEMS engagement. This hybrid role offers the chance to make a real impact on national security efforts, while leveraging cutting-edge technology in a collaborative environment. Why Join Us? •Hybrid Flexibility: Work primarily remote with occasional on-site requirements in Washington DC Metro Area or Seaside, CA. •Engage with Industry Experts: Collaborate with top-tier technical and compliance teams to strengthen security measures. •High-Impact Role: Play a vital part in national security by ensuring the resilience of mission-critical systems. •Professional Growth: Expand your expertise in DevSecOps, vulnerability management, and emerging security technologies. What You'll Do: •Support the remediation of vulnerabilities across a variety of platforms, including Windows Workstation and Server environments. •Apply in-depth knowledge of OS hardening and DISA STIGs to maintain compliance and security across the infrastructure. •Collaborate with cross-functional teams to drive security improvements and ensure alignment with best practices. •Analyze vulnerability scan data, identifying trends and preparing key metrics for leadership. •Utilize foundational knowledge of Linux/Unix OS, networking, and databases to support a comprehensive security approach. What You Bring: •8+ years of hands-on experience in vulnerability management or security engineering. •Expertise in operating system hardening, compliance, and DISA STIGs. •8570 Certification such as Security+, CISSP (or equivalent). •Active Top Secret / Tier 5 security clearance. •Strong communication and organizational skills with the ability to lead and mentor others. •Proven track record in performing trend analysis and reporting of vulnerability data. Desired Skills: •Familiarity with ACAS and PowerShell scripting. •Knowledge of Red Hat Advanced Cluster Security for Kubernetes (StackRox) and Splunk is highly desired. •Strong understanding of Information Assurance Vulnerability Management (IAVM) programs. •Broad experience in IT security, including the management of operating systems, networks, and software vulnerabilities.