Cybersecurity Engineer
CBRE · Hyderabad, Telangana, India
Full-time · Senior · Posted 24 days ago
About The Role
We’re looking for a motivated Mid-Level Cybersecurity Engineer to enhance our vulnerability management security posture. In this role, you will focus on optimizing and engineering our current vulnerability management tools (such as Tenable, Rapid7, Nucleus, etc.), while also building new Python-based solutions to support and improve our workflows.
What You Will Do
Design, build, and maintain integrations across our unifiedvulnerability management platform and connected scanning tools, such asTenable, Rapid7, CyCognito, Censys, and cloud-native security services.
Develop automated ingestion, normalization, and enrichment pipelines for vulnerability data across a variety of scanner outputs and cloud environments.
Build and maintain connector logic between scanners, ticketing systems, CMDB, and workflow orchestration layers to reduce manual analyst burden.
Translate analyst and engineering requirements into well-scoped, maintainable automation, from lightweight Python scripts to full platform integrations.
Maintain and improve scanning infrastructure configuration, such as scan policy tuning, credentialed scanning, and agent deployment patterns.
Own the reliability, quality, and documentation of internal vulnerability engineering tools and integrations.
What You Will Need
Bachelor’s degree in computer science or a related technicalfield.
4+ years of hands-on experience in vulnerability managementengineering, security operations, or a closely related security engineeringrole.
Intermediate understanding of networking fundamentals (OSIModel, TCP/IP, ports/protocols, routing, DNS).
Direct working experience with enterprise vulnerability management platforms, particularly Tenable or Rapid7 InsightVM.
3-5 years of working experience in Python for automation, API integration, and data pipeline work.
Solid understanding of REST API design and consumption, JSON data handling, and building reliable integrations between security tools.
Working knowledge of cloud environments including AWS, Azure, or GCP, and how vulnerability scanning operates across cloud-native and hybrid infrastructure.
Familiarity with scanning fundamentals: authenticated vs.unauthenticated scanning, agent-based approaches, scan policy tuning, andcoverage validation.
Ability to take analyst requirements and translate them intoconcrete engineering deliverables with minimal supervision.