Skip to content
ZocdocZocdocUnited States

Senior Staff Security Engineer, Vulnerability Management

Senior Staff Security Engineer owning the roadmap for an AI-driven vulnerability scanning, triage, and automated remediation platform. Requires 8+ years in security engineering with deep cloud/container expertise, offensive security experience, and proficiency in Python/Go/Rust.

200k – 290k
Remote8+ YOESecurity Engineering

About the role

Your day to day is…

  • Owning the technical roadmap for an automated, AI-driven vulnerability scanning platform across cloud infrastructure, container registries, operating systems, and application-layer software.
  • Building context-engine models that correlate findings from SAST, DAST, SCA, and cloud posture tooling to determine true runtime exploitability.
  • Implementing AI-assisted triage workflows that classify vulnerabilities, reduce false positives, and route validated issues to the right engineering teams.
  • Leading targeted red teaming and collaborative purple teaming exercises to validate exploitable paths and strengthen runtime defenses.
  • Partnering directly with Software Engineering and DevOps to build automated remediation pipelines, including dependency update pull requests and base-image patching workflows.
  • Engineering security scanning guardrails into CI/CD pipelines and providing structured telemetry to support continuous compliance and executive risk visibility.
  • Working with cutting-edge GenAI tools and technology to analyze findings, improve prioritization, and accelerate remediation workflows.

You’ll be successful in this role if you have…

  • Meaningful experience in security engineering, vulnerability management, or software development, with at least 8 years focused on infrastructure, container platforms, and product security.
  • A proven track record of writing production-grade automation scripts and building custom security tooling at scale.
  • Hands-on experience planning or executing offensive security exercises, red teaming, purple teaming, or penetration testing.
  • Deep experience securing cloud infrastructure and containerized ecosystems using platforms such as AWS, GCP, or Azure, along with Docker and Kubernetes.
  • Advanced proficiency in Python, Go, or Rust to build automation, integrate scanner APIs, and orchestrate automated patching workflows.
  • Strong familiarity with adversarial frameworks, vulnerability scoring systems such as CVSS and EPSS, and common application and infrastructure attack vectors including the OWASP Top 10.
  • Experience integrating security scanners into CI/CD workflows and using AI or LLM APIs to analyze code or log data for rapid prioritization.
  • Required: the ability to integrate generative AI tools into daily workflows to automate tasks, foster innovation, and maximize productivity.
  • Advanced security certifications such as OSCE, OSCP, GXPN, CISSP, or equivalent practical engineering experience are highly valued.

Benefits

  • Flexible work environment
  • Unlimited Vacation
  • 100% paid employee health benefit options (including medical, dental, and vision)
  • 401(k) with employer funded match
  • Corporate wellness programs with Headspace and Peloton
  • Sabbatical leave (for employees with 5+ years of service)
  • Competitive paid parental leave and fertility/family planning reimbursement
  • Cell phone reimbursement
  • Employee Resource Groups and ZocClubs to promote shared community and belonging
  • Great Place to Work Certified

Skills

Vulnerability ManagementOffensive SecurityRed TeamingPurple TeamingPenetration TestingAWSGCPAzureDockerKubernetesPythonGoRustSASTDAST
Collective Intelligence Project

Staff Security Engineer

Collective Intelligence ProjectSan Francisco, CA

Own end-to-end security for a fintech platform: authentication/authorization architecture, SAST/DAST in CI/CD, threat modeling, and CCPA compliance. Senior IC role requiring 8+ years in application security.

200k – 260k
Hybrid8+ YOESecurity Engineering
Betterment

Staff Engineer, User Trust

BettermentNew York, NY

Staff Engineer building scalable systems for user trust, fraud prevention, KYC, risk scoring, and compliance. Requires fullstack expertise in Ruby on Rails and React, plus experience leading projects in high-trust financial environments.

200k – 238k
HybridSecurity Engineering
OpenAI

Data Center Physical Security Systems Engineer

OpenAISan Francisco, CA +3

Design and deliver physical security technology architecture for AI data centers, establishing standards for access control, surveillance, and monitoring systems across global infrastructure. Requires 15+ years in physical security systems architecture and hands-on implementation experience.

205k – 335k
Remote15+ YOESecurity Engineering
Illumio

Staff Engineer, Cloud Security

IllumioSunnyvale, CA

Develops containerized microservices in Go for Illumio's cloud security platform, processing real-time cloud telemetry on Kubernetes to deliver security insights and recommendations. Requires 8+ years experience with public clouds (AWS/Azure/GCP) and mentors junior engineers.

194k – 233k
On-site8+ YOESecurity Engineering
Illumio

Staff Engineer, Container Security

IllumioSunnyvale, CA

Staff Engineer builds Zero Trust Segmentation orchestration for container ecosystems, enhancing Kubernetes platforms like EKS and GKE. Requires 8+ years in distributed systems, proficiency in Go/Python/Java, and strong networking expertise; onsite in Sunnyvale, CA.

194k – 233k
On-site8+ YOESecurity Engineering