Position Overview
We are seeking a Security Operations Engineer to lead our vulnerability management program, oversee security assessments, and provide technical security expertise. This role will be crucial in maintaining our security posture through proactive security measures and third-party security programs.
Key Responsibilities
Develop and manage comprehensive vulnerability management program
Create and maintain threat models for GCP, cloud, and onprem linux systems
Coordinate and oversee penetration testing engagements with external vendors
Establish and manage bug bounty program, including triage of submissions
Support security compliance efforts with technical knowledge and documentation
Track and report on security metrics and KPIs
Collaborate with engineering teams to remediate security findings
Required Qualifications
3+ years of experience in security operations or vulnerability management
Experience managing vulnerability scanning tools and processes
Strong understanding of threat modeling methodologies
Experience coordinating penetration testing engagements
Technical knowledge to address complex security inquiries
Understanding of common security frameworks (SOC 2, ISO 27001, etc.)
US person
Natural Citizenship or Green Card
Position requires in office 5 days a week
Preferred Qualifications
Experience managing bug bounty programs
Familiarity with cloud security (AWS, GCP, Azure)
CISSP Certification
Experience with security tooling and automation (Snyk, SentinelOne)
Background in software development or infrastructure