S
Sixgeninc6h ago
New
$100,000 – $155,000/yr

ServiceNow Vulnerability Response Engineer

Northern Virginiamid
OtherEngineer
0 views0 saves0 applied

Quick Summary

Requirements Summary

ServiceNow Security Operations ServiceNow Vulnerability Response (VR) ServiceNow Security Incident Response (SIR) ServiceNow Governance, Risk,

Technical Tools
OtherEngineer

The ServiceNow Vulnerability Response (VR) Engineer is responsible for designing, implementing, and optimizing the Bureau's Enterprise Vulnerability Management Program (VMP) through the ServiceNow Security Operations platform. This role supports the engineering and enhancement of the Vulnerability Response (VR) application, integrating vulnerability data sources, automating remediation workflows, and improving enterprise vulnerability reporting.

The ideal candidate possesses deep experience with ServiceNow Security Operations, particularly the Vulnerability Response (VR) module, and understands how vulnerability management integrates with Security Incident Response (SIR), Governance, Risk, and Compliance (GRC), Configuration Management Database (CMDB), and enterprise security operations. This individual will collaborate with cybersecurity, infrastructure, application, and business stakeholders to ensure vulnerabilities are prioritized, tracked, remediated, and reported effectively using risk-based methodologies and automation.

Responsibilities

~1 min read
  • Configure, administer, and enhance the ServiceNow Vulnerability Response (VR) application within the ServiceNow Security Operations platform.
  • Design and implement workflows that improve vulnerability identification, prioritization, assignment, remediation, and reporting.
  • Develop and maintain integrations between ServiceNow VR and enterprise vulnerability scanning platforms.
  • Configure business rules, workflows, forms, notifications, dashboards, and reporting to support vulnerability management operations.
  • Continuously improve platform functionality to increase operational efficiency and automation.
  • Support the organization's Enterprise Vulnerability Management Program (VMP) by improving vulnerability lifecycle management.
  • Integrate vulnerability findings from multiple scanning tools into ServiceNow to provide centralized visibility and workflow management.
  • Support risk-based vulnerability prioritization based on exploitability, business criticality, asset value, and operational impact.
  • Collaborate with remediation teams to ensure vulnerabilities are tracked through closure and validated appropriately.
  • Develop vulnerability reporting metrics and executive dashboards supporting organizational risk management.
  • Support integration between ServiceNow Vulnerability Response (VR), Security Incident Response (SIR), Governance, Risk, and Compliance (GRC), CMDB, and other ServiceNow modules.
  • Coordinate with Security Operations, Risk Management, Compliance, and Infrastructure teams to improve operational workflows.
  • Ensure vulnerability management processes align with enterprise governance and cybersecurity policies.
  • Assist in documenting vulnerability management procedures and operational processes.
  • Implement automation capabilities that improve vulnerability ingestion, enrichment, prioritization, and remediation workflows.
  • Utilize AI-enabled capabilities to identify high-risk vulnerabilities based on exploitability, threat intelligence, and business impact.
  • Research emerging automation and AI technologies that improve vulnerability management effectiveness and scalability.
  • Recommend workflow improvements that reduce manual effort and accelerate remediation activities.
  • Develop executive-level vulnerability reporting, operational dashboards, and compliance metrics.
  • Monitor program performance and recommend enhancements to vulnerability management processes.
  • Analyze trends to identify recurring weaknesses and opportunities to improve organizational security posture.
  • Maintain documentation supporting platform configuration, integrations, workflows, and operational procedures.

Requirements

~1 min read
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
  • 5+ years of experience supporting enterprise Vulnerability Management Programs.
  • Extensive hands-on experience with:
    • ServiceNow Security Operations
    • ServiceNow Vulnerability Response (VR)
    • ServiceNow Security Incident Response (SIR)
    • ServiceNow Governance, Risk, and Compliance (GRC)
  • Experience integrating enterprise vulnerability scanners (such as Tenable, Qualys, Rapid7, or Microsoft Defender Vulnerability Management) with ServiceNow.
  • Strong understanding of vulnerability lifecycle management, remediation workflows, and risk-based prioritization.
  • Experience configuring ServiceNow workflows, dashboards, reporting, business rules, and automation.
  • Knowledge of vulnerability scoring methodologies, including CVSS, exploitability metrics, and business impact analysis.
  • Strong understanding of enterprise cybersecurity operations and vulnerability management best practices.
  • Excellent analytical, troubleshooting, and communication skills.
  • ServiceNow Certified System Administrator (CSA)
  • ServiceNow Certified Implementation Specialist – Vulnerability Response (CIS-VR)
  • ServiceNow Certified Implementation Specialist – Security Incident Response (CIS-SIR)
  • ServiceNow Certified Application Developer (CAD)
  • CISSP (Certified Information Systems Security Professional)
  • Experience supporting federal government cybersecurity programs.
  • Familiarity with AI-enabled vulnerability prioritization and automated remediation capabilities.
  • Experience integrating ServiceNow with enterprise CMDB, ITSM, and Security Operations platforms.
  • Deep knowledge of ServiceNow Security Operations, particularly Vulnerability Response (VR) and Security Incident Response (SIR).
  • Strong understanding of Governance, Risk, and Compliance (GRC) processes and their relationship to vulnerability management.
  • Ability to design scalable vulnerability management workflows that improve operational efficiency and accountability.
  • Experience developing executive dashboards, vulnerability reporting, and risk metrics.
  • Strong understanding of vulnerability scanning technologies, remediation processes, and enterprise risk management.
  • Ability to automate vulnerability workflows and improve operational maturity using ServiceNow capabilities.
  • Excellent collaboration skills with cybersecurity, infrastructure, compliance, application, and business teams.
  • Ability to translate business and operational requirements into effective ServiceNow security solutions.

 

 

What We Offer

~2 min read
Competitive salary
Employer-paid health insurance premiums (medical, dental, vision)
Employer-paid short/long term disability insurance and basic life/AD&D insurance
401K with a 4% employer contribution
Professional development reimbursement options available (training, certification, education, etc)​
Flexible and remote work policies for most positions
Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
11 paid holidays per calendar year​

Location & Eligibility

Where is the job
Northern Virginia
On-site at the office
Who can apply
Same as job location

Listing Details

Posted
July 3, 2026
First seen
July 3, 2026
Last seen
July 3, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
60%
Scored at
July 3, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

S
ServiceNow Vulnerability Response Engineer$100k–$155k