Position Overview

We are seeking a Security Operations Engineer to lead our vulnerability management program, oversee security assessments, and provide technical security expertise. This role will be crucial in maintaining our security posture through proactive security measures and third-party security programs.

Key Responsibilities

• Develop and manage comprehensive vulnerability management program
• Create and maintain threat models for GCP, cloud, and onprem linux systems
• Coordinate and oversee penetration testing engagements with external vendors
• Establish and manage bug bounty program, including triage of submissions
• Support security compliance efforts with technical knowledge and documentation
• Track and report on security metrics and KPIs
• Collaborate with engineering teams to remediate security findings
  
  

Required Qualifications

• 3+ years of experience in security operations or vulnerability management
• Experience managing vulnerability scanning tools and processes
• Strong understanding of threat modeling methodologies
• Experience coordinating penetration testing engagements
• Technical knowledge to address complex security inquiries
• Understanding of common security frameworks (SOC 2, ISO 27001, etc.)
• US person
• Natural Citizenship or Green Card
• Position requires in office 5 days a week
  

Preferred Qualifications

• Experience managing bug bounty programs
• Familiarity with cloud security (AWS, GCP, Azure)
• CISSP Certification
• Experience with security tooling and automation (Snyk, SentinelOne)
• Background in software development or infrastructure