Senior Security Engineer – Tenable Platforms SME
Overview
We are seeking a true Tenable architect-level expert to lead and evolve our enterprise vulnerability and exposure management platform.
This role will serve as the technical owner and strategic authority across the Tenable ecosystem, with primary focus on Tenable One, while maintaining deep expertise in Tenable.sc, Tenable Vulnerability Management (Tenable.io), Web App Scanning (WAS), and platform integrations.
We are not looking for someone who simply runs scans.
We are looking for someone who designs, governs, optimizes, and modernizes the platform at enterprise scale.
What You’ll Own
- Architectural oversight of the Tenable One platform and broader Tenable stack
- Exposure management strategy and risk-based prioritization using Tenable One insights
- Enterprise-wide scan architecture (zones, policies, authentication strategy, segmentation)
- Standardization and governance of:
- Asset tagging frameworks
- Repositories and organizational structure
- Scan templates and schedules
- Large-scale performance tuning and scan optimization
- Automation strategy using the Tenable API
- Integration with CMDB, SIEM, SOAR, ticketing, and reporting platforms
- Data quality governance and vulnerability lifecycle maturity
- Roadmap planning, platform upgrades, and feature adoption
Key Responsibilities
- Redesign and rationalize existing Tenable configurations to eliminate redundancy and technical debt
- Drive authenticated scan coverage improvements across Windows, Linux, network devices, and cloud
- Architect Tenable One integrations across hybrid and multi-cloud environments
- Build automation (Python / PowerShell) for reporting, workflow orchestration, and data enrichment
- Develop executive-level dashboards leveraging Tenable One exposure and risk scoring
- Partner with Infrastructure, Cloud, DevOps, Application, and GRC teams to operationalize findings
- Provide SME guidance during audits, regulatory reviews, and risk assessments
- Mentor junior engineers and elevate overall platform maturity
Required Experience
- 7+ years in vulnerability management / security engineering
- Deep, hands-on architectural experience with:
- Tenable One
- Tenable.io / Tenable Vulnerability Management
- Tenable.sc
- Proven experience designing and optimizing enterprise-scale Tenable environments
- Demonstrated success cleaning up and governing complex tagging and repository structures
- Advanced proficiency with Tenable API and automation scripting
- Strong understanding of:
- Network segmentation and architecture
- Authentication mechanisms (domain, local, SSH keys, service accounts)
- Cloud environments (AWS, Azure, GCP)
- Distributed scanning models
- Experience reducing false positives and improving vulnerability data accuracy
Preferred
- Experience in Fortune 500 or regulated environments
- Background in exposure management strategy beyond traditional vulnerability scanning
- CISSP or Tenable-related certifications
- Experience leading platform migrations or large-scale Tenable One implementations
What Success Looks Like
- Tenable One operating as a mature exposure management platform
- Clean, scalable, and governed architecture
- High authenticated scan coverage and reduced noise
- Automation-driven reporting and workflow integration
- Executive confidence in exposure and risk metrics
Who This Role Is For
- A Tenable engineer who has inherited messy environments and successfully rebuilt them
- Someone who thinks architecturally, not operationally
- A professional who understands both platform configuration and enterprise risk strategy
- A hands-on leader comfortable owning the entire Tenable ecosystem
