Vulnerability Management Engineer

Candidate Skill:Technical Skills Vulnerability Management, CVE Tracking, Cloud Security Posture Management (CSPM), Prisma, Wiz, SAST, DAST, Dependency Scans, Secrets Scans, Container Workload Protection, Kubernetes, Vulnerability Scanning, Risk Assessment, Change Request Analysis, Security Assessment, Vulnerability Remediation, Security Best Practices.

Job Description:We are looking for a skilled and motivated Vulnerability Management Engineer to join our team. In this role, you will be responsible for assessing, tracking, and managing vulnerabilities in cloud and platform environments. You will play a critical role in ensuring the security posture of applications and infrastructure, using various vulnerability management tools and processes. Your responsibilities will include evaluating vulnerabilities, triaging risks, and ensuring proper remediation actions are taken to protect the organization's systems.

Responsibilities: Vulnerability Assessment: Assess the risk of CVEs (Common Vulnerabilities and Exposures) in the context of your environment and prioritize them based on risk. Vulnerability Management Lifecycle: Triage the entire vulnerability management lifecycle, ensuring vulnerabilities are identified, tracked, and remediated in a timely manner. Application Security & Vulnerability Management: Manage and oversee the Application Security and Vulnerability Management product, including CSPM (Cloud Security Posture Management), SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), Dependency Scans, and Secrets Scans. Cloud Security & Container Protection: Responsible for platform vulnerability management, including Cloud Security Posture Management and Container Workload Protection using Prisma Scanner. Change Request Analysis: Evaluate change requests for e-commerce systems, assess security implications, and provide security recommendations. Change Tracking: Track all feature changes, bug fixes, and release changes for each platform release to ensure no vulnerabilities are introduced. CVE Tracking: Monitor and track CVEs, ensuring timely identification, prioritization, and assessment of vulnerabilities. Component Identification: Identify and document components and systems impacted by proposed changes and their associated vulnerabilities. Security Assessment Planning: Develop and implement security assessment plans for changes to ensure compliance with industry standards and best practices. Vulnerability Scanning: Conduct regular vulnerability scans of infrastructure and source code, focusing on Kubernetes containerized apps, to identify and prioritize security risks. Documentation: Maintain detailed and accurate records of vulnerability assessments, findings, remediation actions, and reporting for compliance purposes. Security Tools: Experience with enterprise-grade vulnerability management tools like Prisma and Wiz is a plus. Qualifications: Solid understanding of vulnerability management life cycle and risk assessment. Experience with vulnerability scanning tools and platforms such as Prisma/Wiz. Familiarity with Cloud Security Posture Management (CSPM), Container Workload Protection, SAST, DAST, and Dependency Scans. Proven experience in security assessment, vulnerability remediation, and risk management. Strong knowledge of CVE tracking and vulnerability prioritization techniques. Knowledge of security best practices and compliance standards. Excellent documentation, communication, and collaboration skills. Past experience in operating enterprise-grade security vulnerability management tools is a plus.