Sr. Security Software Engineer, Vulnerability Management - Slack

About The Position

Requirements

• U.S. Citizenship or Permanent Residency (Green Card holder). Visa sponsorship is not provided.
• 6+ years of industry software engineering experience, with a significant portion in security engineering, platform engineering, or infrastructure-adjacent domains.
• Deep proficiency in Python, with a track record of writing production-grade, tested, maintainable code.
• Demonstrated experience owning and delivering end-to-end engineering projects from design to production deployment and operation.
• Solid understanding of vulnerability management concepts (discovery, classification, prioritization, remediation).
• Experience building or maintaining integrations with security tooling (e.g., vulnerability scanners, SIEM systems).
• Comfort working with CI/CD pipelines, version control workflows, and modern software delivery practices.
• Experience working across teams and communicating technical concepts clearly to both engineers and non-technical stakeholders.
• Strong judgment in ambiguous situations and a track record of asking the right questions before building.

Nice To Haves

• Hands-on experience with vulnerability management tooling (Wiz, Tenable/Nessus, Twistlock) in cloud or containerized environments.
• Familiarity with compliance frameworks like FedRAMP or DoD IL5/IL6.
• Experience with large-scale vulnerability aggregation systems or homegrown data pipelines.
• Background in building automated remediation workflows (e.g., automated PR generation, patch orchestration).
• Experience with cloud environments (AWS, Azure, GCP) and containerized workloads at scale.
• Contributions to the security or software community (open-source, research, conference talks).

Responsibilities

• Build and maintain systems and tooling for detecting, tracking, and remediating security vulnerabilities.
• Drive technical strategy for automating and scaling vulnerability management.
• Collaborate with security engineers, product teams, and infrastructure partners on complex cross-functional challenges.
• Contribute to the technical architecture for vulnerability management tooling, including systems for automated identification, prioritization, tracking, and remediation.
• Design and develop scalable engineering solutions, balancing long-term maintainability with the needs of a fast-moving security organization.
• Drive integration strategy across vulnerability scanners, aggregation pipelines, and downstream systems.
• Partner with cross-functional stakeholders (infrastructure, platform engineering, product security) to embed security automation into the development lifecycle.
• Identify systemic gaps and high-priority problems, propose solutions, and drive them to completion.

Benefits

• Time off programs
• Medical, dental, vision
• Mental health support
• Paid parental leave
• Life and disability insurance
• 401(k)
• Employee stock purchasing program