Vulnerability Operations Engineer (Hybrid - NYC/Charlotte, NC)

Our Customer is a leading global, diversified information, services and media company with more than 360 businesses. Its major interests include various financial services, medical information and services businesses, and lastly, ownership in cable television networks; 33 television stations; 24 daily and 52 weekly newspapers; digital services businesses; and nearly 250 magazines around the world.

Our Customer is seeking a Vulnerability Operations Engineer on a contract basis to help support their business needs. This role is hybrid (3 days on-site and 2 days remote/week) in NYC or Charlotte, NC.

This role will own the engineering layer of our vulnerability management operations: the integrations, pipelines, dashboards, and AI-assisted workflows that turn raw tool output into actionable, business-unit-specific insight. This role exists to relieve operational concentration risk on the vulnerability management function and to deliver visible AI-driven productivity gains across the security program.

Responsibilities:

• Build and maintain integrations and automation across the security tooling stack, including data normalization, deduplication, and enrichment pipelines.
• Develop AI-assisted reporting pipelines that transform security tool outputs into business-unit-specific narratives and executive-ready reporting.
• Automate monthly metric review processes by replacing manual report assembly with scalable reporting workflows.
• Develop and maintain LLM-integrated workflows for alert triage, vulnerability summarization, remediation guidance generation, and finding prioritization.
• Evaluate, prototype, and operationalize emerging AI security tools, including agentic testing platforms and AI-driven offensive security tooling.
• Provide evidence-based recommendations regarding the adoption of security and AI technologies.
• Own and maintain the technical infrastructure supporting monthly business unit metric reviews, including dashboards, reporting pipelines, and data quality processes.
• Partner with vulnerability management teams to encode operational knowledge into scalable automation workflows.
• Reduce operational dependency risks through automation and knowledge-sharing initiatives.
• Contribute to AI governance practices for security operations, including documentation of prompts, model selection, validation methods, and human-in-the-loop controls.
• Produce internal documentation, operational runbooks, and executive-level summaries.
• Support security operations automation within CI/CD, cloud, and infrastructure-as-code environments.

Skills and Qualifications:

• 5+ years of experience in security engineering, detection engineering, SOAR, or security automation roles.
• Strong Python programming skills with experience building REST API integrations and working with structured data at scale.
• Experience deploying and maintaining production-level automation and integrations.
• Hands-on experience with at least two enterprise security platforms such as Tenable, CrowdStrike, Wiz, Qualys, Rapid7, or Splunk.
• Practical experience integrating LLMs into production workflows using platforms such as Anthropic, OpenAI, or equivalent technologies.
• Strong understanding of prompt engineering, production reliability, and LLM failure modes, including hallucinations, prompt injection, and cost management.
• Experience working within CI/CD pipelines, infrastructure-as-code environments, and cloud-based systems.
• Strong written communication skills with the ability to create documentation, runbooks, and executive-ready summaries.
• Strong analytical and problem-solving skills.
• Ability to work cross-functionally within security and engineering environments.

Preferred Qualifications:

• Experience with agent frameworks such as LangChain, LlamaIndex, or similar technologies.
• Experience implementing retrieval-augmented generation (RAG) patterns for security data workflows.
• Background in SOAR development using tools such as Tines, Torq, Cortex XSOAR, or Splunk SOAR.
• Experience with detection-as-code workflows.
• Familiarity with the enterprise security tooling vendor landscape and build-versus-buy evaluations.
• Experience working within multi-tenant or multi-business-unit environments with data isolation and reporting requirements.
• Knowledge of AI security risks, including prompt injection, model abuse, and data leakage mitigation strategies.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor Benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits: Medical, Dental, and 401k (no match)

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.