🛠 Tech Stack

💼 About This Role

You'll manage the vulnerability management program and support secure software development lifecycle (SSDLC) initiatives. You will own the end-to-end vulnerability lifecycle and collaborate with engineering teams to enforce remediation SLAs. This role offers remote flexibility and the chance to work with a high-growth data analytics firm.

🎯 What You'll Do

• Own end-to-end vulnerability lifecycle: intake, triage, remediation, and closure
• Enforce severity-based SLAs and track remediation timelines
• Produce vulnerability posture reports and dashboards for leadership
• Support CI/CD security control implementation and validation

📋 Requirements

• 3-5 years of experience in product security or application security
• Hands-on experience with vulnerability management tools (e.g., SAST, DAST, SCA)
• Proficiency in CI/CD security and secure software development lifecycle practices
• Experience with cloud security (AWS, GCP, or Azure)

✨ Nice to Have

• Experience with container security (Docker, Kubernetes)
• Knowledge of infrastructure as code scanning (Terraform, CloudFormation)
• Familiarity with DevSecOps automation

🎁 Benefits & Perks

• 🏖️ Unlimited PTO
• 🏥 Health insurance (medical, dental, vision)
• 💰 Competitive salary and equity
• 📈 401(k) matching
• 🏠 Remote-friendly with flexible hours

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min
4. 4Team Fit Interview· 45 min