Sr. Security Engineer, Vulnerability Management

Alkami Technology is a digital sales and service platform provider for U.S. banks and credit unions, recognized for its culture and growth. The Senior Security Engineer, Vulnerability Management will own and advance the enterprise vulnerability management program, ensuring the protection of Alkami and its clients through proactive risk reduction and collaboration with cross-functional teams.

Responsibilities:

• Own and advance the enterprise vulnerability management lifecycle with a focus on scanning, triage, risk scoring, remediation tracking, validation, and continuous improvement
• Leverage and modernize AI systems to automate patches and configuration changes, driving toward near real-time resolution of exploits
• Optimize the vulnerability management platform and related tools, ensuring accurate, automated, and scalable coverage across infrastructure, applications, and cloud environments
• Develop and deliver meaningful metrics and executive reporting to drive accountability, measure progress, and inform leadership on vulnerability posture and remediation performance
• Communicate vulnerability status, remediation progress, and SLA performance through recurring updates and appropriate governance forums
• Apply a risk-based prioritization model using CVSS, system criticality, threat intelligence, environmental context, and compensating controls to determine remediation urgency
• Partner cross-functionally with the Red Team, IT, Engineering, SRE, Compliance, and service owners to identify, track, and mitigate risks tied to unsupported technologies, end-of-life systems, legacy services, and cloud-native vulnerabilities
• Manage scanning exemptions and vulnerability exceptions, including documentation, business justification, review, remediation planning, and tracking through established processes
• Help improve asset ownership, routing, and reporting coverage so vulnerability findings are consistently delivered to the correct teams and actioned effectively
• Drive visibility and remediation of cloud misconfigurations, exposed services, over-permissioned identities, and other cloud-native risks in partnership with teams across the organization
• Act as a technical leader in vulnerability risk management, influencing remediation strategies, prioritization decisions, and long-term technology lifecycle planning

Requirements:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent practical experience)
• 8+ years of experience in cybersecurity with at least 3 years focused on vulnerability management, risk management, or related security functions
• SaaS environment experience is required
• Hands-on expertise with vulnerability management platforms (e.g., Wiz, Tenable, Qualys, Rapid7, Vulcan, Kenna)
• Strong knowledge of vulnerability scoring frameworks (CVSS), patch management processes, remediation SLAs, and risk-based prioritization
• Strong understanding of operating systems (Windows, Linux, macOS), networking, and cloud platforms (AWS, Azure, GCP)
• Experience with cloud security tools and CSPM/CNAPP platforms such as Wiz, Prisma Cloud, or Orca
• Demonstrated ability to track, prioritize, and mitigate risks in partnership with IT, Engineering, SRE, and Compliance teams
• Excellent problem-solving, analytical, and communication skills with the ability to influence stakeholders at all levels
• Experience with container security and cloud-native environments (Docker, Kubernetes, serverless)
• Knowledge of security frameworks and regulatory standards (NIST CSF, PCI DSS, SOC 2, ISO 27001)
• Experience automating remediation workflows or integrating vulnerability data into ticketing systems (e.g., Jira, ServiceNow)
• Background in threat modeling, exposure management, and risk assessment beyond patching
• Relevant certifications such as CISSP, CISM, OSCP, GIAC/GVMS, or cloud security certifications