Senior Vulnerability Management Engineer
Raleigh, NCHybrid5+ YOE
Summary
Senior Vulnerability Management Engineer responsible for scanning, triaging, and remediating security vulnerabilities across Celonis' cloud and on-premise infrastructure. Requires 5+ years in vulnerability management and expertise in tools like Qualys, CSPM platforms, and SAST.
About the role
Responsibilities
- Execute comprehensive vulnerability scans across network, cloud, and applications.
- Interpret and triage findings from network scanners, Cloud Security Posture Management (CSPM), Software Composition Analysis (SCA), and Static Application Security Testing (SAST).
- Provide actionable intelligence and prioritization metrics to remediation teams.
- Develop and maintain an asset inventory for dynamic scanning requirements.
- Create executive-level vulnerability metrics and dashboards.
- Participate in Red Team exercises to identify potential vulnerabilities proactively.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
- Minimum of 5 years in a dedicated vulnerability management role.
- Deep understanding of networking protocols and cloud architectures.
- Hands-on experience with premium vulnerability scanning tools such as Qualys, Nessus, or similar.
- Strong proficiency in CSPM tools like Prisma, Dome9, or similar.
- Expertise in interpreting SAST results from tools like Checkmarx or Veracode.
- Excellent scripting skills in Python or Bash for custom vulnerability identification.
Nice-to-Haves
- Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) certification.
Skills
Vulnerability ManagementQualysNessusCSPMPrismaDome9SASTCheckmarxVeracodePythonBashNetworking ProtocolsCloud Architectures