Sr. Vulnerability Management Engineer
Omnissa · Atlanta, GA · 3 wk ago
Information Technology$130k–$170k/yrFull-time
About the role
Omnissa is seeking a Senior Vulnerability Management Engineer to drive our global exposure management strategy. This expert-level role defines how Omnissa discovers, prioritizes, and remediates vulnerabilities across cloud, container, and traditional infrastructure environments.
Responsibilities
- Own and evolve the vulnerability discovery and exposure model across Omnissa’s hybrid environment.
- Use Wiz for cloud, container, Kubernetes, and serverless risk identification.
- Use Tenable (io/sc) for deep infrastructure and endpoint scanning.
- Maintain unified risk scoring, deduplication logic, and visibility across all data sources.
- Use Seemplicity as the centralized platform for routing, deduplication, normalization, and remediation workflows.
- Ensure engineering teams only receive prioritized, actionable findings.
- Develop and maintain enterprise-level remediation SLAs, exception processes, and escalation paths.
- Integrate vulnerability checks into GitHub pipelines (Actions, Security Tab).
- Build automation using Python or PowerShell to exchange data across APIs (Wiz, Tenable, Seemplicity, GitHub, Jira).
- Act as the primary technical Vulnerability Management partner for India-based engineering teams.
- Provide clear remediation guidance for cloud misconfigurations, Kubernetes and container best practices, and Windows/Linux hardening.
- Drive accountability and influence remediation strategy across multiple engineering groups.
- Create dashboards to measure MTTR, SLA compliance, and exposure trends across business units.
- Present risk posture and remediation progress to senior leadership.
- Lead initiatives that measurably reduce enterprise-wide risk.
Requirements
- Tenable (Nessus, Tenable.io, Tenable.sc)
- Wiz for cloud and container exposure management
- Seemplicity or similar remediation orchestration platforms
- Deep understanding of: AWS and Azure cloud security fundamentals, Kubernetes architecture and container hardening, Windows and Linux server security baselines
- Strong automation capabilities using Python or PowerShell
- Strong understanding of exploitability, risk scoring, compensating controls, and threat intelligence
- Experience designing enterprise-scale exposure and prioritization frameworks
- Ability to define and own remediation SLAs and exception workflows
- Demonstrated impact driving measurable vulnerability reduction across large engineering organizations
- Ability to influence across teams and guide senior engineering partners
- Comfortable presenting to leadership and driving decisions that impact multiple business units
- Willingness to mentor junior analysts and raise the maturity of the overall program
Qualifications
- Preferred Certifications such as CISSP, CISM, GSEC, GMON, GRID, or cloud security specializations
- Experience with GitHub-based secure development workflows
- Track record building vulnerability management programs at scale
- Exposure to attack surface management tools
Skills
- Python or PowerShell
- Exploitability, risk scoring, compensating controls, and threat intelligence
- Enterprise-scale exposure and prioritization frameworks
- Remediation SLAs and exception workflows
- MTTR, SLA compliance, and exposure trends
- Risk posture and remediation progress
- Leadership and mentoring
- Presenting to leadership
- Mentoring junior analysts
- Building vulnerability management programs at scale
- Attack surface management tools
Benefits
- Employee ownership
- Health insurance
- 401k with matching contributions
- Disability insurance
- Paid-time off
- Growth opportunities
Pay
The typical base salary for this role is between USD $130,000– $170,000 per year and it may be eligible for participation in a corporate bonus program. Actual compensation offer may vary from posted hiring range based upon geographic location, work experience, education, skill level, or other relevant factors.
Schedule
Hybrid