Senior Security Manager, Vulnerability Management

Summary

Join CoreWeave's growing team as a Senior Manager for Vulnerability Management, responsible for overseeing the company's vulnerability management program and personnel. You will create and execute vulnerability management policies, establish service level objectives, and communicate risk and impact to stakeholders. This role requires collaboration with cross-functional teams to triage and remediate vulnerabilities. The ideal candidate has extensive experience managing vulnerability management programs at scale, leading teams, and performing risk assessments. A strong technical background in cybersecurity, Linux OS, and cloud-based infrastructures is essential. CoreWeave offers a competitive salary, comprehensive benefits, and a hybrid work environment.

Requirements

• Experienced in establishing and managing a vulnerability management program at scale
• Skilled in leading a team of vulnerability engineers and analysts to identify, triage, and support vulnerability remediation
• Proficient in risk assessment, identifying high-impact vulnerabilities, and driving remediations across engineering and IT teams
• Knowledgeable in identifying and remediating CVEs within large infrastructure environments
• Extensive hands-on experience with Linux OS, including security tool management, server administration, and patching for Linux and Windows
• Experienced in managing security compliance tools like EDR, antivirus, and log analysis in complex environments
• Eager to learn and adopt new technologies as required
• Strong technical background, particularly with cybersecurity tools
• Proficiency with enterprise-level information security tools, systems administration, and troubleshooting for servers and workstations
• Knowledge of cloud-based infrastructures and network concepts/protocols
• Familiarity with Linux OS environments and cybersecurity certifications such as Security+, Network+
• Experience with container orchestration, like Kubernetes
• Competence in creating and presenting technical strategies and solution recommendations
• Skilled in designing and implementing technical solutions, integrating new technologies into existing portfolios
• Experience collaborating with cross-functional teams, especially engineering

Responsibilities

• Creating and overseeing the execution of vulnerability management policies and procedures (e.g. patching)
• Establishing and meeting Service Level Objectives for both enterprise security and product impacting vulnerabilities
• Creating and ensuring the adherence to procedures for notifying both the business and clients (where applicable) about risk and impacts from security vulnerabilities
• Communicating and coordinating with other teams in order to triage and remediate vulnerabilities in first and third-party software and software dependencies
• Acting as a liaison between other teams (Hardware, Application Security, Offensive Security) in order to appropriately assign, follow, and close security tickets

Preferred Qualifications

Preferred certifications include GREM, GPEN, GCED, CEH, GSEC, OSCP

Benefits

• Medical, dental, and vision insurance - 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption