SkyePoint Decisions, Inc. · 4 weeks ago
Senior Qualys Security Engineer
US-DC
Full-time
Hybrid
Senior Level
$125K/yr - $160K/yr
5+ years expSkyePoint Decisions is a leading cybersecurity architecture and engineering firm headquartered in Dulles, Virginia, providing enterprise-wide solutions to federal government clients. The Senior Qualys Security Engineer will manage and optimize the Qualys platform, conduct vulnerability assessments, and collaborate with cross‑functional teams to improve the organization’s security posture. Responsibilities include overseeing scan operations, automating reporting, maintaining asset inventories, and mentoring junior analysts.
AnalyticsAppsArtificial Intelligence (AI)Cyber SecurityInformation TechnologyIT InfrastructureMachine LearningSecurity
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Oversee day-to-day management of the Qualys platform including agents, scanners, and connectors
Optimize scan configurations, authentication methods, and template deployments
Review and interpret scan results to generate actionable intelligence for technical and non-technical audiences
Partner with infrastructure, development, and SOC teams to validate findings and drive remediation efforts
Automate tasks using Qualys APIs and custom scripts to support reporting and data integration
Maintain an up-to-date asset inventory through discovery and classification workflows
Minimize false positives through tuning and validation
Conduct policy compliance assessments in support of regulatory frameworks
Provide guidance and mentorship to junior analysts in vulnerability management best practices
Qualification
Required
5+ years of hands-on expertise with Qualys
Must be able to commute to Beltsville, MD or Washington, DC for full-time onsite work
Secret clearance with the ability to obtain a Top Secret clearance is required
Proficiency in scripting (Python, PowerShell, or Bash)
Familiarity with network protocols, OS security (Windows/Linux), and web application vulnerabilities
Understanding of compliance standards and frameworks (e.g., NIST 800-53, CIS Controls, ISO 27001.)
Qualys Vulnerability Management & Policy Compliance
Qualys Web Application Scanning
Automation using Qualys APIs
Network architecture and protocol knowledge
Database and OS-level security
Vulnerability lifecycle and remediation strategies
Excellent written and verbal communication
Strong problem-solving and analytical mindset
Ability to operate independently or as part of a multi-disciplinary team
Solid documentation and reporting practices
Experience engaging with cross-functional stakeholders
US Citizenship is required
Preferred
Professional certifications: CISSP, CEH, GIAC, or equivalent
Exposure to other scanning tools (e.g., Tenable, Rapid7)
Familiarity with public cloud security models (AWS, Azure, GCP)
Experience with configuration management tools and CI/CD pipelines
Background in system administration, network engineering, or DevSecOps
Benefits
Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched
Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.
Flexible Work Environment
PTO
Vision
Company
SkyePoint Decisions, Inc.
SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
Bo Kimbrough
Founder & CEO
Jason Weaver
Chief Technology Officer
Recent News
Morningstar.com
2025-07-01
Washington Technology
2024-11-23
2024-02-09
Company data provided by crunchbase