Resumen del rol

Senior Security Vulnerability Engineer

Requisitos y responsabilidades

Contenido del rol extraído en secciones para revisar más rápido.

Here’s what you can expect:

  • Competitive base
  • Comprehensive benefits and wellness support
  • Flexible work model: hybrid, remote, or in-office
  • Real growth opportunities and leadership visibility
  • Inclusive, respectful culture that blends U.S. innovation with Colombian heart
  • A company that listens, invests in you, and celebrates wins together

Here’s what you can expect:

  • Own and advance the enterprise vulnerability management lifecycle — scanning, triage, risk scoring, remediation tracking, validation, and continuous improvement.
  • Leverage AI systems to automate patches and configuration changes, driving toward near real-time exploit resolution.
  • Optimize the vulnerability management platform for accurate, automated, and scalable coverage across infrastructure, applications, and cloud environments.
  • Develop executive-level metrics and reporting to drive accountability and communicate vulnerability posture to leadership.
  • Apply a risk-based prioritization model using CVSS, system criticality, threat intelligence, and compensating controls to determine remediation urgency.
  • Partner cross-functionally with Red Team, IT, Engineering, SRE, and Compliance to identify and mitigate risks tied to end-of-life systems and cloud-native vulnerabilities.
  • Manage scanning exemptions and vulnerability exceptions through their full lifecycle, including documentation, justification, and remediation tracking.
  • Drive visibility and remediation of cloud misconfigurations, exposed services, and over-permissioned identities across the organization.

Here’s what you can expect:

  • Bachelor's degree in Computer Science, Information Security, or a related field — or equivalent practical experience.
  • 8+ years in cybersecurity, with at least 3 years focused on vulnerability management or risk management in a SaaS environment.
  • Hands-on expertise with vulnerability management platforms such as Wiz, Tenable, Qualys, Rapid7, Vulcan, or Kenna.
  • Strong command of CVSS, patch management, remediation SLA management, and risk-based prioritization.
  • Solid understanding of operating systems (Windows, Linux, macOS), networking, and major cloud platforms (AWS, Azure, GCP).
  • Experience with CSPM/CNAPP platforms such as Wiz, Prisma Cloud, or Orca.
  • Excellent analytical and communication skills with a track record of influencing stakeholders at all levels.

Here’s what you can expect:

  • Experience with container security and cloud-native environments (Docker, Kubernetes, serverless).
  • Knowledge of security frameworks such as NIST CSF, PCI DSS, SOC 2, or ISO 27001.
  • Experience automating remediation workflows or integrating vulnerability data into Jira or ServiceNow.
  • Relevant certifications: CISSP, CISM, OSCP, GIAC/GVMS, or cloud security certifications.
Roles similares

Mantén una lista de respaldo.

Ver stack
FocoVulnerability ManagementÁrea del rol
Señal de senioritySeniorNivel del candidato
StackAWS, Azure, DockerSkills principales
Ubicación1 país aceptadoElegibilidad

Stack

Usa estas tags para comparar roles remotos similares.

Elegibilidad de ubicación

Candidatos deberían aplicar solo cuando el país del perfil aparece aquí.

Tu perfilPaís no definidoInicia sesión para comparar tu país con este rol.

Flujo de contratación

WithMira muestra el rol y luego envía candidatos a la aplicación de la empresa.

1Revisa fit del rol, stack y elegibilidad de ubicación en WithMira.
2Abre la página de aplicación de la empresa desde el link rastreado.
3Guarda el rol o suscríbete a oportunidades similares antes de salir.
Aplicar en el sitio de la empresaSitio de la empresaAbrir link