Lead Vulnerability Management Security Engineer
Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 1973H1B No SponsorCompany SiteLinkedIn
Location
Arizona + 4 moreAll locations: Arizona, California, Texas, Utah, Washington
Posted
84 days ago
Salary
$120K - $130K / year
Bachelor Degree4 yrs expEnglishCloudCyber SecurityPython
Job Description
• Lead the review and analysis of vulnerability data to identify trends, patterns, and key risks across Deckers’ global environment
• Facilitate vulnerability management meetings and drive risk-based discussions to prioritize and accelerate remediation efforts
• Advise and support remediation teams in developing actionable plans to address vulnerabilities and strengthen our security posture
• Perform risk-based assessments for both on-premise and cloud-based services, ensuring robust protection for critical assets
• Integrate advanced security technologies and automation tools to enhance threat detection and response capabilities
• Build and present business cases for adopting new security solutions to mitigate emerging risks
• Develop, consolidate, and maintain security metrics to measure the effectiveness of our cybersecurity program
• Apply industry-leading frameworks (NIST, ISO27001/2, CIS Top 20 Controls) to establish and maintain best-in-class security measures
• Foster strong relationships with technical teams, serving as a trusted advisor and championing a culture of security awareness
• Contribute to the strategic direction of the Technical Security team by designing and implementing tools that enhance customer trust and detect suspicious activity
Job Requirements
- BA/BS degree or equivalent experience in a relevant field
- Security professional certification (CISSP, CVA, GEVA, or similar) preferred
- 4+ years of hands-on experience in vulnerability management, including scanning, assessment, and remediation
- Proven success in starting and growing a vulnerability management program
- Proficiency with leading vulnerability management tools (Tenable, CrowdStrike) and scripting/automation languages (PowerShell, Python)
- Deep understanding of security frameworks and compliance standards (NIST, ISO27001/2, CIS Top 20 Controls, PCI-DSS, HIPAA)
- Strong analytical skills to identify patterns, trends, and actionable insights from complex vulnerability data
- Excellent communication skills for reporting and stakeholder engagement
- Collaborative mindset with the ability to serve as a trusted advisor across cross-functional teams
- Self-driven, strategic thinker with a passion for advancing cybersecurity programs.
Benefits
- Competitive Pay and Bonuses
- Financial Planning and wellbeing
- Time away from work
- Extras, discounts and perks
- Growth and Development
- Health and Wellness
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Web Security Engineer, Browser Platform
DuckDuckGoIndependent internet privacy company. Download our browser with privacy built-in, unlike Chrome, on mobile & desktop.
Security Engineer85 days ago
Full TimeRemoteTeam 51-200Since 2008H1B No Sponsor
Senior Web Security Engineer ensuring security capabilities for DuckDuckGo
Security Engineer85 days ago
Full TimeRemoteTeam 501-1,000Since 1998H1B Sponsor
Staff Security Engineer safeguarding Mozilla's products with embedded security practices
JavaJavaScriptPythonSDLCGo
Security Engineer85 days ago
Full TimeRemoteTeam 201-500H1B No Sponsor
Cybersecurity Engineer ensuring client IT security against threats at Stambaugh Ness
CloudCyber SecurityDNSFirewallsTCP/IP
Principal Data and AI Security Architect
FICOFICO is an analytics company helping businesses make better decisions that drive higher levels of growth and success.
Security Engineer85 days ago
Full TimeRemoteTeam 1,001-5,000Since 1956H1B No Sponsor
Principal Data and AI Security Architect defining security strategies for AI/ML at FICO
AWSAzureCloudGoogle Cloud PlatformJavaJenkinsOraclePythonTerraform
