ServiceNow Vulnerability Response Engineer
Quick Summary
ServiceNow Security Operations ServiceNow Vulnerability Response (VR) ServiceNow Security Incident Response (SIR) ServiceNow Governance, Risk,
The ServiceNow Vulnerability Response (VR) Engineer is responsible for designing, implementing, and optimizing the Bureau's Enterprise Vulnerability Management Program (VMP) through the ServiceNow Security Operations platform. This role supports the engineering and enhancement of the Vulnerability Response (VR) application, integrating vulnerability data sources, automating remediation workflows, and improving enterprise vulnerability reporting.
The ideal candidate possesses deep experience with ServiceNow Security Operations, particularly the Vulnerability Response (VR) module, and understands how vulnerability management integrates with Security Incident Response (SIR), Governance, Risk, and Compliance (GRC), Configuration Management Database (CMDB), and enterprise security operations. This individual will collaborate with cybersecurity, infrastructure, application, and business stakeholders to ensure vulnerabilities are prioritized, tracked, remediated, and reported effectively using risk-based methodologies and automation.
Responsibilities
~1 min read- Configure, administer, and enhance the ServiceNow Vulnerability Response (VR) application within the ServiceNow Security Operations platform.
- Design and implement workflows that improve vulnerability identification, prioritization, assignment, remediation, and reporting.
- Develop and maintain integrations between ServiceNow VR and enterprise vulnerability scanning platforms.
- Configure business rules, workflows, forms, notifications, dashboards, and reporting to support vulnerability management operations.
- Continuously improve platform functionality to increase operational efficiency and automation.
- Support the organization's Enterprise Vulnerability Management Program (VMP) by improving vulnerability lifecycle management.
- Integrate vulnerability findings from multiple scanning tools into ServiceNow to provide centralized visibility and workflow management.
- Support risk-based vulnerability prioritization based on exploitability, business criticality, asset value, and operational impact.
- Collaborate with remediation teams to ensure vulnerabilities are tracked through closure and validated appropriately.
- Develop vulnerability reporting metrics and executive dashboards supporting organizational risk management.
- Support integration between ServiceNow Vulnerability Response (VR), Security Incident Response (SIR), Governance, Risk, and Compliance (GRC), CMDB, and other ServiceNow modules.
- Coordinate with Security Operations, Risk Management, Compliance, and Infrastructure teams to improve operational workflows.
- Ensure vulnerability management processes align with enterprise governance and cybersecurity policies.
- Assist in documenting vulnerability management procedures and operational processes.
- Implement automation capabilities that improve vulnerability ingestion, enrichment, prioritization, and remediation workflows.
- Utilize AI-enabled capabilities to identify high-risk vulnerabilities based on exploitability, threat intelligence, and business impact.
- Research emerging automation and AI technologies that improve vulnerability management effectiveness and scalability.
- Recommend workflow improvements that reduce manual effort and accelerate remediation activities.
- Develop executive-level vulnerability reporting, operational dashboards, and compliance metrics.
- Monitor program performance and recommend enhancements to vulnerability management processes.
- Analyze trends to identify recurring weaknesses and opportunities to improve organizational security posture.
- Maintain documentation supporting platform configuration, integrations, workflows, and operational procedures.
Requirements
~1 min read- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
- 5+ years of experience supporting enterprise Vulnerability Management Programs.
- Extensive hands-on experience with:
- ServiceNow Security Operations
- ServiceNow Vulnerability Response (VR)
- ServiceNow Security Incident Response (SIR)
- ServiceNow Governance, Risk, and Compliance (GRC)
- Experience integrating enterprise vulnerability scanners (such as Tenable, Qualys, Rapid7, or Microsoft Defender Vulnerability Management) with ServiceNow.
- Strong understanding of vulnerability lifecycle management, remediation workflows, and risk-based prioritization.
- Experience configuring ServiceNow workflows, dashboards, reporting, business rules, and automation.
- Knowledge of vulnerability scoring methodologies, including CVSS, exploitability metrics, and business impact analysis.
- Strong understanding of enterprise cybersecurity operations and vulnerability management best practices.
- Excellent analytical, troubleshooting, and communication skills.
- ServiceNow Certified System Administrator (CSA)
- ServiceNow Certified Implementation Specialist – Vulnerability Response (CIS-VR)
- ServiceNow Certified Implementation Specialist – Security Incident Response (CIS-SIR)
- ServiceNow Certified Application Developer (CAD)
- CISSP (Certified Information Systems Security Professional)
- Experience supporting federal government cybersecurity programs.
- Familiarity with AI-enabled vulnerability prioritization and automated remediation capabilities.
- Experience integrating ServiceNow with enterprise CMDB, ITSM, and Security Operations platforms.
- Deep knowledge of ServiceNow Security Operations, particularly Vulnerability Response (VR) and Security Incident Response (SIR).
- Strong understanding of Governance, Risk, and Compliance (GRC) processes and their relationship to vulnerability management.
- Ability to design scalable vulnerability management workflows that improve operational efficiency and accountability.
- Experience developing executive dashboards, vulnerability reporting, and risk metrics.
- Strong understanding of vulnerability scanning technologies, remediation processes, and enterprise risk management.
- Ability to automate vulnerability workflows and improve operational maturity using ServiceNow capabilities.
- Excellent collaboration skills with cybersecurity, infrastructure, compliance, application, and business teams.
- Ability to translate business and operational requirements into effective ServiceNow security solutions.
What We Offer
~2 min readLocation & Eligibility
Listing Details
- Posted
- July 3, 2026
- First seen
- July 3, 2026
- Last seen
- July 3, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 60%
- Scored at
- July 3, 2026
Signal breakdown
Please let Sixgeninc know you found this job on Jobera.
3 other jobs at Sixgeninc
View all →Explore open roles at Sixgeninc.
Similar Engineer jobs
View all →Browse Similar Jobs
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
No spam. Unsubscribe at any time.