Security Engineer - Vulnerability Management

About The Position

Requirements

• 5+ years of experience in cloud security engineering or related field
• The individual must be a U.S. Citizen, U.S. National or U.S. Person. Individuals outside of these categories are generally barred from having logical access to IL5 data or infrastructure
• Bachelor’s degree in Computer Science, Engineering, or related discipline
• Expereince in one or more security domains, such as endpoint security, configuration compliance, SIEM/SOAR, or ITSM integrations
• Experience deploying, configuring, and using cloud and endpoint security tools like Microsoft Defender
• Experience with service desk tools like ServiceNow
• Experience in at least one programming language (Python, Go, or TypeScript)
• Experience with policy-as-code and infrastructure-as-code tools (OPA, Sentinel, Conftest, Terraform, CloudFormation, or CDK)
• Experience integrating security controls into CI/CD pipelines
• Experience with multi-cloud environments
• Experience with Kubernetes and container security
• Experience with incident response and root cause analysis in cloud environments
• Experience with monitoring, alerting, and defining service level objectives
• Experience authoring technical documentation, modules, and runbooks
• Experience with cloud security posture management (CSPM/KSPM) tools
• Experience hardening images, registries, and implementing workload/runtime controls
• Experience collaborating with engineering, IT, and security teams

Nice To Haves

• Master’s degree in Computer Science, Engineering, or related discipline
• Deep experience with Azure security services, architecture, and best practices
• Knowledge of Wiz, Microsoft Defender, or similar CWPP/CNAPP solutions
• Experience with AWS and/or GCP security controls
• Experience with serverless security and securing cloud-native applications
• Experience with regulatory compliance frameworks (e.g., SOC 2, ISO 27001, PCI DSS)
• Experience with automated remediation and security orchestration in cloud environments
• Experience with secrets management and PKI in cloud platforms

Responsibilities

• Design and implement scalable security controls and systems to protect cloud infrastructure across a global environment
• Design and implement the optimization of enterprise endpoint security tools (e.g., EDR, antivirus, device control)
• Discover and manage security vulnerabilities and work with teams for remediation
• Lead initiatives to establish, enforce, and continuously improve cloud security baselines and guardrails
• Collaborate with engineering, product, and operations teams to embed security into infrastructure, platforms, and development workflows
• Develop and maintain automation, policy-as-code, and infrastructure-as-code solutions to streamline security operations and compliance
• Integrate security checks and guardrails into CI/CD pipelines, enabling secure development practices and early detection of risks
• Respond to cloud security incidents, conduct post-mortems, and drive remediation and platform hardening based on lessons learned
• Harden cloud resources, images, and registries, and deliver reusable modules and templates for secure-by-default deployments
• Monitor and reduce configuration drift, verify remediation effectiveness, and manage exceptions with clear criteria and review processes
• Operate and optimize third-party cloud security platforms, ensuring reliability and alignment with service level objectives
• Author clear documentation, runbooks, and self-service resources to empower product and platform teams in secure cloud adoption
• Report on key security metrics, such as coverage, drift, and incident response effectiveness, to drive transparency and continuous improvement

Benefits

• Bonus: Sales personnel are eligible for variable incentive pay dependent on their achievement of pre-established sales goals. Non-Sales roles are eligible for a company bonus plan, which is calculated as a percentage of eligible wages and dependent on company performance.
• Paid Time Off: earned time off, as well as paid company holidays based on region
• Paid Parental Leave: take up to six months off with your child after birth, adoption or foster care placement
• Full Health Benefits Plans: options for 100% employer paid and minimum employee contribution health plans from day one of employment
• Retirement Plans: select retirement and pension programs with potential for employer contributions
• Learning and Development: options for coaching, online courses and education reimbursements
• Compassionate Care Leave: paid time off following the loss of a loved one and other life-changing events