Back to Jobs
Austin, TX; San Diego, CA On-site Full-time

Saronic Technologies is hiring a Vulnerability Management Lead

Responsibilities

  • Manage the complete vulnerability lifecycle across cloud, on-premises, container, and embedded Linux systems, from detection to verification and exception handling
  • Operate and fine-tune enterprise-grade scanning tools to ensure continuous, authenticated assessments of servers, endpoints, network infrastructure, containers, and cloud resources
  • Integrate vulnerability detection into CI/CD pipelines to strengthen build processes, enforce least-privilege principles, and identify supply chain threats early
  • Use AI-enhanced scanning and graph-based data enrichment to speed up triage, identify potential lateral movement paths, and prioritize risks by exploit likelihood and business impact
  • Aggregate and correlate results from multiple tools to minimize false positives and highlight critical vulnerabilities requiring action
  • Apply CVSS scores, CISA Known Exploited Vulnerabilities data, exploit availability, and asset context—such as public exposure and privileged access—to set risk-driven remediation timelines
  • Collaborate with engineering teams to ensure timely fixes and manage escalation processes for unresolved high and critical vulnerabilities
  • Lead rapid response efforts for critical CVEs, including fast assessment, impact analysis, containment strategies, and communication to stakeholders
  • Oversee the vulnerability exception process, including risk acceptance with compensating controls, time-limited approvals, and scheduled reviews
  • Coordinate patch deployment and change windows across Windows, Linux, networking equipment, and cloud platforms
  • Align vulnerability management practices with CMMC Level 2 and 3 requirements, generating audit-ready documentation, POA&Ms, and control validation reports
  • Produce executive and operational reports on key metrics such as exposure trends, SLA adherence, patching speed, and remediation rates
  • Support compliance audits by providing accurate, well-documented vulnerability records and remediation histories
  • Ensure asset inventory accuracy and scanning coverage while respecting boundaries for classified and sensitive systems
  • Develop and expand automation for scan scheduling, finding enrichment, ticket generation, SLA monitoring, and reporting to scale operations efficiently
  • Establish and improve vulnerability management policies, procedures, and response playbooks, including protocols for critical CVEs and patching cycles
  • Assess and propose enhancements to tooling and integrations across the security ecosystem to improve detection and response capabilities
  • Guide and train junior analysts, and conduct simulation exercises for vulnerability response and patching scenarios

Other

  • Prolonged periods of sitting at a desk and working on a computer
  • Occasional standing and walking within the office
  • Manual dexterity to operate a computer keyboard, mouse, and other office equipment
  • Visual acuity to read screens, documents, and reports
  • Occasional reaching, bending, or stooping to access file drawers, cabinets, or office supplies
  • Lifting and carrying items up to 20 pounds occasionally (e.g., office supplies, packages)
  • Clearance: Security clearance eligibility
About company
Saronic Technologies

Providing the most advanced and capable autonomous vessels in the maritime domain.

Our Autonomous Surface Vessels enhance awareness, extend reach, and improve survivability through capabilities such as launch, maneuver, perceive, communicate, execute, enable, and recover.

The company is driven by a mission to redefine maritime superiority with cutting-edge technology and a team composed of veterans, technologists, and world-class engineers.

All jobs at Saronic Technologies Visit website
Job Details
Department Software
Category other
Posted 6 days ago