FreshRemote.Work

Security Engineer, Vulnerability Management

Remote

CoreWeave is a specialized cloud provider, delivering a massive scale of GPU compute resources on top of the industry’s fastest and most flexible infrastructure. CoreWeave builds cloud solutions for compute intensive use cases — VFX and rendering, machine learning and AI, batch processing, and Pixel Streaming — that are up to 35 times faster and 80% less expensive than the large, generalized public clouds. Learn more at www.coreweave.com.

About this Role:

The Vulnerability Management Team at CoreWeave is responsible for shepherding security findings from discovery through closure across a diverse set of technologies.  As a member of the Vulnerability Management Team, you will directly help our business understand how vulnerabilities affect our technology stack, employees, partners, vendors, and customers while helping to build and improve our vulnerability management tools, processes, and procedures.

Core Responsibilities:

  • Helping stakeholders within CoreWeave understand how security vulnerabilities affect the organization while effectively and accurately articulating their impact and importance
  • Influence and help prioritize the remediation of vulnerabilities using CoreWeave’s vulnerability remediation tools and processes
  • Identify and help remediate visibility gaps related to vulnerability identification and triaging
  • Own the expedited vulnerability triaging process to ensure time-sensitive issues are adequately remediated
  • Assist in creating external vulnerability notifications related to the CoreWeave technology stack
  • Provide process and procedure improvements to increase CoreWeave’s ability to react to newly discovered and/or published vulnerabilities affecting both our customers and employees

Minimum Qualifications & Experience:

  • 3+ years of proven experience working in an vulnerability management and/or offensive security capacity (e.g. penetration testing, red teaming, or vulnerability assessment)
  • Competency with a modern programming or scripting language (GoLang, Python, Bash, etc.)
  • Experience administering fleets of Mac, iOS, Linux, and/or Windows systems (bonus if you have experience with several)
  • A strong understanding of Linux operating system internals
  • Experience working in a vulnerability management / remediation role

Highly Desirable:

  • Experience with using Kubernetes
  • Proficiency with using scripting languages to manage fleets of end-user systems
  • Experience influencing remediation strategy using a data-driven approach =

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $160,000-$185,000. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

Hybrid Workplace

Successful candidates will be expected to attend onboarding training at our NJ Headquarters within their first several weeks of employment, with subsequent quarterly travel requirements of 1 week duration.

If you reside within a 30-mile radius of our New Jersey, New York, or Philadelphia offices, we're excited for you to join us at the office at least three times a week, recognizing the significance we place on fostering connections, collaboration, and creativity within our office culture. Our commitment to operating as a hybrid workplace underscores our dedication to enabling our employees to tailor their work-life balance to their individual preferences.

Why CoreWeave?

At CoreWeave, we work hard, have fun, and move fast!  We’re in an exciting stage of hyper-growth that you will not want to miss out on. We’re not afraid of a little chaos, and we’re constantly learning. Our team cares deeply about how we build our product and how we work together, which is represented through our core values: 

  • Be Curious at your Core
  • Act like an Owner
  • Empower Employees
  • Deliver Best In-Class Client Experience 
  • Achieve More Together

We support and encourage an entrepreneurial outlook and independent thinking. We foster an environment that encourages collaboration and provides the opportunity to develop innovative solutions to complex problems. As we get set for take off, the growth opportunities within the organization are constantly expanding. You will be surrounded by some of the best talent in the industry, who will want to learn from you, too. Come join us! 

Benefits

We offer a competitive salary and benefits, including:

  • Medical, dental and vision insurance - 100% paid for the employee
  • Company paid Life Insurance 
  • Voluntary supplemental life insurance 
  • Short and long-term disability insurance 
  • Flexible Spending Account
  • Tuition Reimbursement 
  • Mental Wellness Benefits through Spring Health 
  • Family-Forming support provided by Carrot
  • Paid Parental Leave 
  • Flexible, full-service childcare support with Kinside
  • 401(k) with a generous employer match
  • Flexible PTO
  • Catered lunch each day in our offices
  • Weekly massages in NJ office
  • A casual work environment
  • Work culture focused on innovative disruption

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to our diversity and inclusiveness. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age.

 

Apply

Job Profile

Skills

AI Bash Batch processing Cloud solutions Golang GPU compute GPU compute resources Kubernetes Linux Machine Learning Management Organization Penetration Testing Pixel Streaming Python Rendering Scripting Scripting Languages VFX Vulnerability Management

Tasks
  • Create external vulnerability notifications
  • Identify visibility gaps
  • Own expedited vulnerability triaging process
  • Prioritize remediation of vulnerabilities
  • Provide process and procedure improvements
  • Support
  • Understand security vulnerabilities impact
Experience

3+ years

Education

Business

Restrictions

Hybrid workplace Quarterly travel requirements