GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
Overview
GuidePoint Security is seeking an Exposure Management Engineer to support and scale our Exposure Management operations services. This role focuses on the day-to-day operation, optimization, and automation of security platforms including vulnerability management, CAASM, and CNAPP tools. The engineer will work closely with senior security engineers and client teams to help operationalize exposure management programs, manage platform findings, and improve remediation workflows. This position is ideal for someone who enjoys working hands-on with security tools, solving operational problems, and building automation to improve security programs at scale.
Key Responsibilities
Platform Operations
- Operate and maintain security platforms including vulnerability management, CAASM, and CNAPP tools
- Monitor security findings and support prioritization and remediation workflows
- Assist in platform tuning, configuration optimization, and integration with client environments
- Support Embraces of new assets, applications, and cloud environments into security platforms
Exposure Management Operations
- Review exposure findings and assist with prioritization and remediation tracking
- Help manage remediation workflows with client engineering teams
- Generate operational dashboards and reporting for security leadership
- Assist in maintaining asset inventory coverage and scanning accuracy
CNAPP & Cloud Security Support
- Assist with the operation and optimization of CNAPP platforms (e.g., Wiz, Prisma Cloud, Orca)
- Support cloud posture monitoring and exposure analysis
- Assist with investigation of cloud misconfigurations, identity exposures, and attack paths
- Work with senior engineers to onboard new cloud environments
Automation & Integrations
- Develop scripts and automation to improve security workflows
- Build integrations between security tools and ticketing systems
- Automate reporting, vulnerability triage, and remediation tracking
- Use APIs and automation frameworks to reduce manual operational effort
Client Engagement
- Participate in regular operational cadence meetings with clients
- Provide updates on platform findings and remediation progress
- Assist senior engineers in troubleshooting security platform issues
- Contribute to documentation and operational playbooks
Required Qualifications
- 3+ years of experience in cybersecurity engineering
- Exposure management or risk-based vulnerability management experience
- Familiarity with vulnerability management, exposure management, or CNAPP platforms such as Tenable, Qualys, Rapid7, Wiz, Axonius, or similar tools
- Scripting experience (Python, PowerShell, or similar)
- Experience working with APIs or automating workflows
- Understanding of security fundamentals: vulnerabilities, misconfigurations, identity and access control, security monitoring
- Strong communication skills and ability to work with engineering teams
- Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes
Preferred Qualifications
- Experience with CNAPP platforms such as: Wiz, Prisma Cloud, Orca, Lacework
- Experience with cloud platforms: AWS, Azure, GCP
- Familiarity with container security and Kubernetes
- Experience integrating security tools with ticketing platforms (Jira, ServiceNow)
- Experience using AI-assisted tools (LLMs, copilots, or agent frameworks) to accelerate scripting, analysis, and security operations workflows
Ideal Candidate Profile
The ideal candidate is someone who:
- Enjoys working hands-on with security platforms
- Likes solving operational and workflow challenges
- Naturally looks for opportunities to automate repetitive tasks and improve workflows using scripting, APIs, or AI tools
- Can operate independently but collaborates well with clients and engineers
This role provides exposure to a wide range of security programs and technologies and offers strong growth into cloud security, exposure management architecture, and security automation.
We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
Why GuidePoint?
GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers.
Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.
This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
Some added perks….
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Skills Required
- 3+ years of experience in cybersecurity engineering
- Exposure management or risk-based vulnerability management experience
- Familiarity with vulnerability management, exposure management, or CNAPP platforms
- Scripting experience (Python, PowerShell, or similar)
- Experience working with APIs or automating workflows
- Understanding of security fundamentals: vulnerabilities, misconfigurations, identity and access control, security monitoring
- Strong communication skills and ability to work with engineering teams
GuidePoint Security Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about GuidePoint Security and has not been reviewed or approved by GuidePoint Security.
-
Healthcare Strength — Company materials highlight fully covered employee premiums on a base medical plan, options including PPO and HSA, employer HSA contributions, and access to an EAP. These elements materially enhance the overall value of compensation for individuals.
-
Flexible Benefits — A remote‑first model with telework/flex‑time and monthly phone/home‑internet stipends is emphasized. This flexibility and stipending increase the attractiveness of the total rewards across many roles.
-
Leave & Time Off Breadth — Flexible Time Off, company holidays, and parental and other protected leaves are outlined in ESG materials and job postings. Such breadth supports work‑life balance and complements cash compensation.
GuidePoint Security Insights
What We Do
GuidePoint Security is an elite team of highly trained, top certified experts who cut through cyber chaos and confusion to put control back in your hands. We help you make the smartest, most informed decisions, choose and integrate products and services that are the best fit, and build the most effective cybersecurity posture. We provide organizations with holistic perspective on their cyber ecosystem to minimize gaps, vulnerabilities, and optimize resources, including: 1. Understanding the changing threat landscape, vulnerabilities, and gaps 2. New insights of how product decisions align with resource capacity 3. Insightful product comparisons and integration to save time, money, and mistakes
