Cloud Security Vulnerability Management Program Specialist

The Role

We are seeking a skilled and motivated Cloud Security Vulnerability Management Program Specialist to support the Cloud Security Assurance (CSA) organization by ensuring enterprise cloud workloads are securely configured, continuously monitored, and protected throughout their runtime lifecycle. This role is focused on identifying workload‑level vulnerabilities, insecure configurations, and runtime behaviors that could expose systems to compromise, service disruption, or unauthorized access across hybrid and multi‑cloud environments.

The Cloud Security Vulnerability Management Program Specialist is responsible for maintaining visibility into workload security posture across virtual machines, containers, and supporting compute services. This includes vulnerability assessment, configuration validation, and runtime monitoring to detect drift from defined security baselines and identify suspicious or policy‑violating activity. The role requires strong understanding of cloud workload architectures, operating system security fundamentals, and shared responsibility models to accurately assess risk and prioritize remediation.

This role partners closely with infrastructure, platform, engineering, and operations teams to ensure vulnerability findings are actionable, risk‑assessed, and remediated appropriately. The Cloud Security Vulnerability Management Program Specialist plays a critical role in strengthening workload security maturity by operationalizing Cloud Security tooling, supporting audit and regulatory requirements, and providing leadership with transparent, risk‑based reporting on workload security posture.

The Cloud Security Vulnerability Management Program Specialist operates in fast‑paced, enterprise‑scale environments and contributes to the development and maintenance of workload security standards, baselines, and documentation that support consistent governance and assurance across all in‑scope compute platforms.

• Ensure cloud workloads are protected and monitored in alignment with CSA security standards and defined baselines.
• Maintain continuous visibility into workload security posture across virtual machines, containers, and compute platforms.
• Identify workload vulnerabilities, misconfigurations, and insecure operating system or platform settings.
• Monitor runtime activity to detect suspicious behavior, privilege escalation, policy violations, and drift from security baselines.
• Build, maintain, and tune vulnerability detections aligned to vulnerability management and runtime protection requirements.
• Support onboarding and operationalization of cloud security tooling across environments and workload types.
• Partner with infrastructure, Dev Ops, and platform teams to drive remediation of workload security risks.
• Triage vulnerability findings, assess risk and impact, and support prioritization of remediation efforts.
• Provide workload security posture reporting, metrics, and risk transparency to CSA leadership.
• Contribute to workload security standards, baseline documentation, and audit readiness activities.

• Understanding of Cloud Native security concepts and runtime security principles.
• Experience identifying and managing workload vulnerabilities and insecure configurations.
• Knowledge of cloud compute services, operating systems, and containerized workloads.
• Familiarity with vulnerability management and runtime detection techniques.
• Strong analytical, documentation, and collaboration skills.

• Experience supporting cloud or workload security assurance programs.
• Hands‑on experience with Cloud Security Vulnerability Management tools (e.g., Aqua, Prisma Cloud, Wiz, Defender).
• Familiarity with Linux security fundamentals.
• Experience supporting audit or compliance‑driven security reviews.
• Bachelor's degree in a technical or security‑related field.
• Relevant cloud or security certifications preferred.

1st shift (United States of America)

40

$ - $ annualized salary, offers to be determined based on experience, education and skill set.

This role is currently benefits eligible. We provide industry‑leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.