Vulnerability Operations Engineer (AI) - Remote

CentralSquare Technologies,
Remote

About The Position

CentralSquare is seeking a Vulnerability Operations (VulnOps) Engineer to join our Security team. This is an individual contributor role purpose-built for the post-AI era of vulnerability discovery - where AI models can now find and exploit flaws at machine speed, and reactive patch cycles are no longer sufficient. This role is not an advisory function. The VulnOps Engineer owns the full pipeline from discovery through fix delivery utilizing AI-powered scanning.

Requirements

  • Individual contributor role
  • AI-powered scanning
  • Operate and continuously improve an AI-powered scanning pipeline
  • Use Kiro and Orca to conduct ongoing vulnerability assessments
  • Apply reachability analysis
  • Monitor threat intelligence feeds, CVE disclosures, and coordinated disclosure programs
  • Develop and validate fixes and/or configuration changes using AI coding agents such as Claude Code
  • Collaborate with application and infrastructure teams
  • Own the end-to-end SLA lifecycle for all open findings
  • Maintain real-time tracking of detection, fix submission, and remediation status in the vulnerability management system
  • Proactively escalate findings approaching SLA breach
  • Produce regular reporting on SLA adherence, remediation velocity, and open risk posture
  • Own the configuration, tuning, and operational health of VulnOps tooling including Orca, Claude Code, and Azure DevOps security integrations
  • Evaluate and recommend new tools and capabilities
  • Work closely with application engineering, DevOps, and infrastructure teams
  • Provide security guidance to engineering teams
  • Partner with the Risk and Compliance team
  • Ensure vulnerability data and SLA metrics align with audit and regulatory reporting requirements (NIST CSF, PCI DSS, CJIS)

Responsibilities

  • Operate and continuously improve an AI-powered scanning pipeline across CentralSquare's infrastructure components
  • Use Kiro and Orca to conduct ongoing vulnerability assessments
  • Apply reachability analysis to distinguish genuinely exploitable vulnerabilities from theoretical findings, reducing alert fatigue and focusing remediation effort where risk is real
  • Monitor threat intelligence feeds, CVE disclosures, and coordinated disclosure programs (including Project Glasswing patch releases) to identify newly disclosed vulnerabilities affecting CentralSquare's software supply chain
  • Develop and validate fixes and/or configuration changes using AI coding agents such as Claude Code, verifying resolution without regressions before submission
  • Collaborate with application and infrastructure teams, providing technical context and responding to questions about proposed changes
  • Own the end-to-end SLA lifecycle for all open findings, maintaining real-time tracking of detection, fix submission, and remediation status in the vulnerability management system
  • Proactively escalate findings approaching SLA breach with remediation options and risk context
  • Produce regular reporting on SLA adherence, remediation velocity, and open risk posture for the security leadership team
  • Own the configuration, tuning, and operational health of VulnOps tooling including Orca, Claude Code, and Azure DevOps security integrations
  • Evaluate and recommend new tools and capabilities as the AI security tooling landscape evolves
  • Work closely with application engineering, DevOps, and infrastructure teams to ensure fix delivery and implementation is efficient and minimally disruptive to production environments
  • Provide security guidance to engineering teams in the context of AI-accelerated vulnerability discovery
  • Partner with the Risk and Compliance team to ensure vulnerability data and SLA metrics align with audit and regulatory reporting requirements (NIST CSF, PCI DSS, CJIS)
  • Perform other duties as assigned

Benefits

  • Tuition reimbursement
  • Parental leave
  • Paid volunteer hours
  • Unlimited PTO
  • Flexible work environment
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service