Sr. Security Engineer, Vulnerability Management

Alkami Technology is a digital sales and service platform provider for U.S. banks and credit unions. They are hiring a Senior Security Engineer, Vulnerability Management to advance their enterprise vulnerability management program, ensuring the protection of the company and its clients through proactive risk reduction and cross-functional collaboration.

Responsibilities:

• Own and advance the enterprise vulnerability management lifecycle with a focus on scanning, triage, risk scoring, remediation tracking, validation, and continuous improvement
• Leverage and modernize AI systems to automate patches and configuration changes, driving toward near real-time resolution of exploits
• Optimize the vulnerability management platform and related tools, ensuring accurate, automated, and scalable coverage across infrastructure, applications, and cloud environments
• Develop and deliver meaningful metrics and executive reporting to drive accountability, measure progress, and inform leadership on vulnerability posture and remediation performance
• Communicate vulnerability status, remediation progress, and SLA performance through recurring updates and appropriate governance forums
• Apply a risk-based prioritization model using CVSS, system criticality, threat intelligence, environmental context, and compensating controls to determine remediation urgency
• Partner cross-functionally with the Red Team, IT, Engineering, SRE, Compliance, and service owners to identify, track, and mitigate risks tied to unsupported technologies, end-of-life systems, legacy services, and cloud-native vulnerabilities
• Manage scanning exemptions and vulnerability exceptions, including documentation, business justification, review, remediation planning, and tracking through established processes
• Help improve asset ownership, routing, and reporting coverage so vulnerability findings are consistently delivered to the correct teams and actioned effectively
• Drive visibility and remediation of cloud misconfigurations, exposed services, over-permissioned identities, and other cloud-native risks in partnership with teams across the organization
• Act as a technical leader in vulnerability risk management, influencing remediation strategies, prioritization decisions, and long-term technology lifecycle planning

Requirements:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent practical experience)
• 8+ years of experience in cybersecurity with at least 3 years focused on vulnerability management, risk management, or related security functions. SaaS environment experience is required
• Hands-on expertise with vulnerability management platforms (e.g., Wiz, Tenable, Qualys, Rapid7, Vulcan, Kenna)
• Strong knowledge of vulnerability scoring frameworks (CVSS), patch management processes, remediation SLAs, and risk-based prioritization
• Strong understanding of operating systems (Windows, Linux, macOS), networking, and cloud platforms (AWS, Azure, GCP)
• Experience with cloud security tools and CSPM/CNAPP platforms such as Wiz, Prisma Cloud, or Orca
• Demonstrated ability to track, prioritize, and mitigate risks in partnership with IT, Engineering, SRE, and Compliance teams
• Excellent problem-solving, analytical, and communication skills with the ability to influence stakeholders at all levels
• Experience with container security and cloud-native environments (Docker, Kubernetes, serverless)
• Knowledge of security frameworks and regulatory standards (NIST CSF, PCI DSS, SOC 2, ISO 27001)
• Experience automating remediation workflows or integrating vulnerability data into ticketing systems (e.g., Jira, ServiceNow)
• Background in threat modeling, exposure management, and risk assessment beyond patching
• Relevant certifications such as CISSP, CISM, OSCP, GIAC/GVMS, or cloud security certifications