Security Engineer- Vulnerability Management

By /
This job has been expired
Mounds View, MN OR Cleveland, OH, OR Newton, MA
C2C

Security Engineer – Vulnerability Management Opportunity

  • Hybrid opportunity close to Minneapolis, MN; Cleveland, OH; or Newton, MA
  • Must have extensive experience coding in Python
  • Other core skills
    • Software Bill of Materials analytics (vulnerabilities)
    • Experience working in a highly-regulated environment

 

 

We are looking for a Contract Product Security Engineer to support vulnerability management initiatives within a product security organization. This role is ideal for a security professional who enjoys hands-on analysis, structured problem-solving, and improving security processes through automation and collaboration. You will work closely with engineering and security teams to help identify, assess, and prioritize security risks across software components.

What project we have for you

The focus of this project is vulnerability management through Software Bill of Materials (SBOM) analysis. The engineer will review and triage vulnerabilities identified by SBOM scanning tools, assess risk and severity, and support remediation efforts in partnership with cross-functional teams. The role also includes enhancing vulnerability management workflows through scripting and automation, as well as maintaining clear documentation to ensure traceability and compliance within a structured development environment.

What you will do

  • Review, analyze, and triage vulnerabilities identified through SBOM scanning tools
  • Assess vulnerability severity and support risk-based prioritization of remediation efforts
  • Collaborate with engineering, security, and product teams to drive resolution
  • Monitor and track vulnerability status to ensure timely and effective closure
  • Develop or leverage scripts and automation to enhance vulnerability management processes
  • Maintain accurate documentation of findings, actions taken, and outcomes

What you need for this

  • Prior experience working in product security
  • Proficiency in Python
  • Strong analytical skills and attention to detail
  • Ability to collaborate effectively with cross-functional technical teams

Will be a plus:

  • Experience with vulnerability management programs
  • Experience working in a regulated industry
  • Familiarity with SBOM management tools, such as Dependency Track or similar platforms
Scroll to Top