Vulnerability Remediation Specialist
CognizantAbout the role
As a Vulnerability Remediation Specialist, you will make an impact by strengthening our organization’s security posture by identifying, prioritizing, and resolving endpoint vulnerabilities across a co-managed environment. You’ll use tools such as Intune, SCCM, Qualys, and PowerShell to drive measurable improvements in endpoint protection, ensuring devices are secure, compliant, and resilient. You will be a valued member of the Cloud Infrastructure and Security team and work collaboratively with the Senior Manager.
In this role, you will:
• Review and prioritize vulnerabilities daily using Qualys, focusing on severity 4 and 5 issues.
• Develop, test, and deploy remediation scripts using PowerShell across Windows endpoints.
• Use Microsoft Intune for proactive remediation and endpoint management.
• Collaborate in co-managed environments (Intune and SCCM until end of life).
• Validate scripts in isolated test environments (e.g., WVD or personal device) and follow structured change management processes for deployment.
• Document remediation activities thoroughly to maintain audit-ready records.
• Integrate and leverage endpoint protection tools including CrowdStrike, Microsoft Defender, CyberArk, Zscaler, and Bomgar.
• Partner with cybersecurity and infrastructure teams to align remediation with broader security strategies.
Work model:
We believe hybrid work is the way forward as we strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position requiring 3 days a week in a client or Cognizant office in Beachwood, OH. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.
The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.
What you need to have to be considered:
• 5–10 years of experience in endpoint management within large enterprise or hybrid environments.
• Advanced knowledge of Windows OS and endpoint security configurations.
• Expert-level PowerShell scripting skills.
• Hands-on experience with Intune, Qualys, and SCCM.
• Familiarity with tools such as CrowdStrike, Microsoft Defender, CyberArk, Zscaler, and Bomgar.
• Strong understanding of vulnerability management practices and remediation workflows.
These will help you stand out:
• Excellent documentation and communication skills.
• Experience with structured change management and deployment processes.
• Certifications such as Microsoft Certified: Endpoint Administrator or equivalent.
• Familiarity with automation, orchestration, and cybersecurity concepts.
We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.