Resumo da vaga

Senior Security Vulnerability Engineer

Requisitos e responsabilidades

Conteúdo da vaga extraído em seções para revisão mais rápida.

Here’s what you can expect:

  • Competitive base
  • Comprehensive benefits and wellness support
  • Flexible work model: hybrid, remote, or in-office
  • Real growth opportunities and leadership visibility
  • Inclusive, respectful culture that blends U.S. innovation with Colombian heart
  • A company that listens, invests in you, and celebrates wins together

Here’s what you can expect:

  • Own and advance the enterprise vulnerability management lifecycle — scanning, triage, risk scoring, remediation tracking, validation, and continuous improvement.
  • Leverage AI systems to automate patches and configuration changes, driving toward near real-time exploit resolution.
  • Optimize the vulnerability management platform for accurate, automated, and scalable coverage across infrastructure, applications, and cloud environments.
  • Develop executive-level metrics and reporting to drive accountability and communicate vulnerability posture to leadership.
  • Apply a risk-based prioritization model using CVSS, system criticality, threat intelligence, and compensating controls to determine remediation urgency.
  • Partner cross-functionally with Red Team, IT, Engineering, SRE, and Compliance to identify and mitigate risks tied to end-of-life systems and cloud-native vulnerabilities.
  • Manage scanning exemptions and vulnerability exceptions through their full lifecycle, including documentation, justification, and remediation tracking.
  • Drive visibility and remediation of cloud misconfigurations, exposed services, and over-permissioned identities across the organization.

Here’s what you can expect:

  • Bachelor's degree in Computer Science, Information Security, or a related field — or equivalent practical experience.
  • 8+ years in cybersecurity, with at least 3 years focused on vulnerability management or risk management in a SaaS environment.
  • Hands-on expertise with vulnerability management platforms such as Wiz, Tenable, Qualys, Rapid7, Vulcan, or Kenna.
  • Strong command of CVSS, patch management, remediation SLA management, and risk-based prioritization.
  • Solid understanding of operating systems (Windows, Linux, macOS), networking, and major cloud platforms (AWS, Azure, GCP).
  • Experience with CSPM/CNAPP platforms such as Wiz, Prisma Cloud, or Orca.
  • Excellent analytical and communication skills with a track record of influencing stakeholders at all levels.

Here’s what you can expect:

  • Experience with container security and cloud-native environments (Docker, Kubernetes, serverless).
  • Knowledge of security frameworks such as NIST CSF, PCI DSS, SOC 2, or ISO 27001.
  • Experience automating remediation workflows or integrating vulnerability data into Jira or ServiceNow.
  • Relevant certifications: CISSP, CISM, OSCP, GIAC/GVMS, or cloud security certifications.
Vagas similares

Mantenha uma lista reserva.

Ver stack
FocoVulnerability ManagementÁrea da vaga
Sinal de senioridadeSeniorNível do candidato
StackAWS, Azure, DockerSkills principais
Localização1 país aceitoElegibilidade

Stack

Use estas tags para comparar vagas remotas similares.

Elegibilidade de localização

Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.

Seu perfilPaís não definidoEntre para comparar seu país com esta vaga.

Fluxo de contratação

O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.

1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
2Abra a página de aplicação da empresa pelo link rastreado.
3Salve a vaga ou assine oportunidades similares antes de sair.
Aplicar no site da empresaSite da empresaAbrir link