Staff Engineer II, Cyber – Threat and Vulnerability Management
Phoenix, Texas, United States of America
Full Time
4 hours ago
Visa Sponsor
Key skills
CloudCyber SecurityLinuxPythonServiceNowBashPowerShellLeadershipCommunicationCloud Security
About this role
Role Overview
- engineer, operationalize, and continuously mature a scalable, risk-based Threat & Vulnerability Management (TVM) program across hybrid environments
- collaborate with internal business partners and IT Tower Leads to proactively address ongoing vulnerability and configuration hardening issues to ensure rapid resolution
- foster a collaborative environment with focus on continuous mitigation and mitigation of cyber vulnerabilities
- accountable to proactively recommend improvements to established processes while continuing to deliver high value in execution
- create and deliver comprehensive project plans as well as remove any impediments, track overall project performance
- serve as a hands-on technical leader responsible for building, integrating, and automating vulnerability discovery, prioritization, remediation workflows, and security guardrails
- partner closely with Cyber Defense, Cloud Engineering, Infrastructure, DevOps, Application, and Platform teams to reduce enterprise risk through measurable, engineering-led outcomes
- assist in the strategic direction and execution of the TVM program
- review and enforce CIS security baseline compliance across enterprise assets
- integrate automated scanning and security controls into DevSecOps pipelines
- work cross-functionally with Cloud Engineering, DevOps, Infrastructure, and IT to prioritize and remediate vulnerabilities based on business risk, exploitability, and regulatory requirements
- support the use and optimization of enterprise vulnerability scanning and compliance tools
- monitor emerging threats, zero-day vulnerabilities, and misconfigurations, and lead remediation and communication efforts accordingly
- produce reporting and metrics that provide visibility into vulnerability trends, patch compliance, and CIS benchmark adherence for technical and executive audiences
- contribute to cloud security governance, including the design and enforcement of security guardrails
- ensure alignment with regulatory standards (e.g., FFIEC, GLBA, PCI-DSS, NIST 800-53, ISO 27001)
- support a team of security analysts and engineers focused on vulnerability detection, analysis, and risk mitigation
Requirements
- 6+ years of related experience in cybersecurity or security engineering experience or similar field
- Bachelor's degree in related field required
- Previous leadership experience preferred
- Advanced knowledge of general Financial Services or Banking is preferred
- Advanced to expert experience with and knowledge of Vulnerability Management Systems, DAST Scanning, SAST, and SCA
- Advanced to expert knowledge of patch management systems
- Advanced knowledge of NIST, MITRE and Administration of an IT Automation platform
- Advanced Linux experience
- Advanced automation skills (Python, PowerShell, Bash)
- Experience in regulated or highly controlled environments
- Hands-on ServiceNow Vulnerability Response experience preferred
- Risk-based vulnerability scoring expertise preferred
- Advanced speaking and writing communication skills
Tech Stack
- Cloud
- Cyber Security
- Linux
- Python
- ServiceNow
Benefits
- competitive salaries
- an ownership stake in the company
- medical and dental insurance
- time off
- a great 401k matching program
- tuition assistance program
- an employee volunteer program
- a wellness program