Senior Vulnerability Management & Configuration Assurance Engineer

Company Description Ascenteum is a specialized consultancy focused on delivering tailored solutions to investment firms, helping them improve performance and navigate the complexities of global capital markets. The firm offers services spanning business process optimization, regulatory reporting, training and change management, and continuous operational support. Ascenteum also provides staff augmentation and fintech implementation expertise, including major platforms such as Aladdin, Calypso, Murex, and SimCorp. Clients benefit from comprehensive support across risk management, pricing and valuations, trade workflows, settlements, accounting, and vendor selection, ensuring technology and processes remain aligned with strategic objectives.

Role Description The Senior Vulnerability Management & Configuration Assurance Engineer will be responsible for leading the assessment, tracking, and remediation of security vulnerabilities across infrastructure, applications, and cloud environments. This contract role is hybrid, based in New York, NY, with the flexibility to work from home part of the time. Day-to-day responsibilities include running vulnerability scans, analyzing security findings, prioritizing remediation efforts, and collaborating with infrastructure, development, and operations teams to drive timely resolution. The engineer will maintain and improve configuration baselines, ensure compliance with security standards and hardening guidelines, and document security controls and procedures. The role also includes creating dashboards and reports for leadership, supporting security audits, and contributing to automation efforts that enhance detection, remediation, and configuration assurance.

Qualifications

• Configuration and security management skills, including experience with Configuration Management, secure baseline development, hardening standards (e.g., CIS, NIST), and enterprise configuration tools (e.g., Ansible, Chef, Puppet, SCCM).
• Strong Analytical Skills and Troubleshooting capabilities for interpreting vulnerability scan results, investigating complex security issues, and validating remediation effectiveness.
• Effective Communication skills, including the ability to explain technical risks to non-technical stakeholders, create clear documentation, and collaborate with cross-functional teams.
• Experience with Software Development or scripting (e.g., Python, PowerShell, Bash, or similar) to automate security tasks, integrate tools, and support secure SDLC practices.
• Proven experience with vulnerability management tools and processes (e.g., Tenable, Qualys, Rapid7, or similar) and ticketing/ITSM platforms (e.g., ServiceNow, Jira).
• Solid understanding of network, operating system, and cloud security (e.g., Windows, Linux, AWS, Azure, or GCP) and common security frameworks and standards.
• Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field, or equivalent practical experience.
• Relevant security certifications (e.g., CISSP, CISM, CEH, Security+, or similar) are preferred