Senior Vulnerability Management Engineer

About The Position

Requirements

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
• Minimum of 5 years in a dedicated vulnerability management role.
• Deep understanding of networking protocols and cloud architectures.
• Hands-on experience with premium vulnerability scanning tools such as Qualys, Nessus, or similar.
• Strong proficiency in CSPM tools like Prisma, Dome9, or similar.
• Expertise in interpreting SAST results from tools like Checkmarx or Veracode.
• Excellent scripting skills in Python or Bash for custom vulnerability identification.

Nice To Haves

• Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) certification is a plus.

Responsibilities

• Execute comprehensive vulnerability scans across various technological domains including network, cloud, and applications.
• Interpret and triage findings from network scanners, Cloud Security Posture Management (CSPM), Software Composition Analysis (SCA), and Static Application Security Testing (SAST).
• Provide actionable intelligence and prioritization metrics to remediation teams.
• Develop and maintain an asset inventory for dynamic scanning requirements.
• Create executive-level vulnerability metrics and dashboards.
• Participate in Red Team exercises to identify potential vulnerabilities proactively.

Benefits

• health
• dental
• life
• 401k
• paid time off
• bonus/commission
• equity
• Restricted Stock Units (RSUs)
• merit-based refresh grants
• 24 weeks of fully paid leave for primary carers
• 12 weeks for supporting carers
• Unlimited PTO (in applicable regions)
• generous PTO globally
• flexible hybrid work model
• 70-20-10 learning framework
• mentorship programs
• access to a dedicated learning platform
• subsidized Wellhub memberships
• mental health counseling
• dedicated "Wellness Weeks"
• paid time off to volunteer for community and environmental causes