Security Engineer (Vulnerability Management)

| San Francisco | Remote
Sorry, this job was removed at 11:34 a.m. (PST) on Thursday, August 19, 2021
Find out who's hiring in San Francisco.
See all Cybersecurity + IT jobs in San Francisco
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What are we looking for?

The Senior Vulnerability Engineer is responsible for the identification, tracking, reporting, and remediation of vulnerabilities and configuration deviations. While the role has responsibilities across all SentinelOne managed environments and devices, candidates will focus primarily on cloud environments including those meeting FedRAMP requirements. Candidates will collaborate with architects, engineers, threat analysts, and compliance teams to drive continuous improvements of SentinelOne’s Vulnerability Management Program. This may include enhancements to existing or the development and integration of new tools and processes. Candidates are expected to question the status quo to identify opportunities for continuous improvement and are enabled to take action to ensure the effectiveness of a distributed security program operating within DevOps centric workflows.

What will you do?

  • Research and analyze vulnerability results to triage them using Mitre and other resources
  • Perform research on applications and operating system vulnerabilities to determine true severity and impact
  • Provide recurring monthly reports to program managers to fulfill regulatory requirements
  • Collaborate with an experienced team of industry-leading engineers and developers
  • Develop novel solutions to challenges around emerging technology, such as container scanning
  • Support the company’s efforts to provide world class protection for our customers


What skills & knowledge should you bring?

  • Bachelor's Degree in Computer Science, IT or other relevant degree or equivalent work experience
  •  3+ years working in vulnerability management or equivalent role
  • Familiarity with Configuration Management programs, and managing baselines
  • Experience with server, workstation, and containerization platforms
  • Working knowledge of on premise and AWS hosted architecture (GCP, Azure, OCI are nice to have)
  • Deep understanding of common vulnerability and configuration scanning tools (e.g., Tanium, Qualys, Nessus, Sysdig, etc.)
  • Experience researching and interpreting NVD listed vulnerabilities, communicating remediation and mitigation strategies
  • Web Application scanning using SAST and DAST tools, advising on remediation requirements
  • Experience developing automated workflows and performing post-processing tasks using Python
  • Familiarity with containerization security including vulnerability discovery and configuration hardening 
  • Working knowledge of ELK and Devo SIEM including searching, reporting, and dash-boarding
  • Experience following change control processes using Jira 
  • Good interpersonal skills to coordinate vuln management between internal teams
  • Ability to synthesize large amounts of data into easily digestible and actionable tasks 
  • Detail oriented focus with ability to balance multiple project streams

Why us?

You will work on real-world problems and make an impact by protecting our customers from cyber threats. You will be joining a cutting-edge project and will be able to influence the architecture, design, and structure of our core platform. You will tackle extraordinary challenges and work with the very BEST in the industry.

  • Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
  • Unlimited PTO
  • Paid Company Holidays
  • Paid Sick Time
  • Gym membership reimbursement
  • Cell phone reimbursement
  • Numerous company-sponsored events including regular happy hours and team building events

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles. 

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Location

444 Castro Street, Mountain View, 94041

Similar Jobs

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about SentinelOneFind similar jobs