Senior Vulnerability Engineer

26 days ago

Remote, United StatesSenior

Responsibilities

Design and implement scalable vulnerability scanning and asset discovery solutions.
Engineer and maintain integrations between vulnerability management tools and internal systems.
Automate vulnerability ingestion, enrichment, prioritization, and remediation workflows.
Develop risk-based prioritization models using vulnerability data and threat intelligence.
Build and maintain pipelines for integrating vulnerability scanning into CI/CD processes.
Create dashboards to track vulnerability exposure and remediation SLAs.
Monitor and respond to zero-day vulnerabilities and active exploit campaigns.
Partner with Engineering and DevOps teams to troubleshoot and remediate vulnerabilities.
Support compliance requirements through technical implementation and evidence generation.
Document systems, workflows, and automation for repeatability.
Support red team exercises, penetration tests, and bug bounty programs.
Coordinate and validate findings from testing activities.
Integrate offensive security findings into vulnerability management workflows.
Partner with external vendors to triage submissions in bug bounty programs.
Continuously improve testing methodologies and tooling.

5–8+ years of experience in vulnerability management or security engineering.
Strong hands-on experience with vulnerability scanning tools and exploit analysis.
Experience building automation using Python, PowerShell, or similar languages.
Experience integrating security tools into engineering workflows using APIs.
Strong understanding of cloud platforms like AWS, GCP, and Azure.
Experience embedding security into CI/CD pipelines.
Ability to troubleshoot vulnerabilities across system, network, and application layers.
Hands-on experience with penetration testing and bug bounty programs.
Working knowledge of compliance frameworks such as NIST SP 800-53 and SOC 2.

AWSAzureGoogle Cloud PlatformPowerShellPythonSplunk