Principal Engineer, Attack Surface and Vulnerability Management (ASVM)

We are seeking a highly skilled Principal Engineer to join our Attack Surface and Vulnerability Management (ASVM) team. The role is instrumental in safeguarding our infrastructure by driving automation, managing our external attack surface, and applying AI to streamline security operations.

Requirements

• 8+ years in information security with a focus on infrastructure and vulnerability management.
• Bachelor’s degree in a relevant field or equivalent experience.
• Deep expertise in Tenable, Tanium, Defender for EASM, Shodan, Azure, Splunk, and Kali.
• Strong scripting and automation skills (Python, PowerShell, Selenium, API integration).
• Proficiency in ServiceNow, especially the Vulnerability Response module.
• Experience with tools such as Arnica, SonarQube, Aqua, Veracode.
• Familiarity with industry frameworks (NIST CSF, ISO 27001, OWASP, CISA KEV, CIS Top 20).
• Strong communication skills with experience presenting to technical and executive audiences.
• Business intelligence experience (Power BI, Tableau).
• Relevant certifications such as CISSP, CISM, OSCP, or CCSP.
• An automation-first mindset with a passion for applying AI to security challenges.
• Deep infrastructure domain expertise and strategic thinking.
• A collaborative spirit and ability to influence across teams and levels.

Benefits

• Medical, dental, and vision
• HSA contribution and match
• Dependent care FSA match
• Uncapped paid time off
• Paid parental leave
• 401(k) match
• Personal and healthcare financial literacy programs
• Ongoing education & tuition assistance
• Gym and fitness reimbursement
• Wellness program incentives