Senior Security Engineer, Vulnerability Management
2 months ago
We are seeking a highly skilled and experienced Senior Security Engineer to join our dynamic team. The ideal candidate will have extensive experience in vulnerability management, patch management, and incident response. This role involves driving and executing vulnerability management processes, ensuring the security posture of enterprise assets, and supporting the incident response team. If you are passionate about cybersecurity and have a proactive approach to security, we would love to hear from you.
Here's What You'll Do
- Develop and implement a comprehensive vulnerability management program.
- Conduct regular vulnerability assessments and penetration testing to identify security weaknesses.
- Continuously monitor and assess publicly disclosed vulnerabilities to determine their potential impact on enterprise assets.
- Provide detailed analysis and reports on identified vulnerabilities specific to Moderna's systems, assets, and environments, including risk assessments, mitigation recommendations, and remediation timelines.
- Stay up-to-date with the latest security threats, trends, and technologies to ensure the organization's security measures are current and effective, working closely with our Threat Intelligence team.
- Prioritize and coordinate remediation efforts of identified vulnerabilities across multi-functional engineering and manufacturing partners.
- Develop and maintain metrics to measure the effectiveness of the vulnerability management program.
- Perform security assessments of applications, systems, and networks to ensure compliance with security policies and standards.
- Collaborate with development and infrastructure teams to integrate vulnerability management into the software development lifecycle (SDLC).
- Act as a key member of the incident response team to investigate and mitigate security incidents.
- Provide expertise and guidance during security incidents to ensure timely and effective resolution.
- Develop, review, and update security policies, procedures, and standards to enhance the security posture of the organization.
- Ensure compliance with relevant regulations and industry standards.
- Provide leadership and mentorship to junior security engineers and other IT staff.
- Work closely with cross-functional teams, including IT, development, and operations, to ensure alignment on security initiatives.
- Communicate effectively with executive leadership and other stakeholders regarding security risks and mitigation strategies.
- 6+ years of experience in information security, with a focus on vulnerability management
- Experience with cloud security (AWS, Azure, GCP)
- Familiarity with DevSecOps practices and integrating security into CI/CD pipelines
- Knowledge of scripting and automation tools (e.g., Python, PowerShell)
- Strong knowledge of vulnerability management tools (e.g., Qualys, Nessus, Rapid7) and techniques
- Experience with security assessment methodologies and penetration testing tools.
- In-depth understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS)
- Proven experience in incident response and handling security incidents
- Excellent analytical, problem-solving, and communication skills
- Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly desirable
- Highly competitive and inclusive medical, dental and vision coverage options
- Flexible Spending Accounts for medical expenses and dependent care expenses
- Lifestyle Spending Account funds to help you engage in personal enrichment and self-care activities
- Family care benefits, including subsidized back-up care options and on-demand tutoring
- Free premium access to fitness, nutrition, and mindfulness classes
- Exclusive preferred pricing on Peloton fitness equipment
- Adoption and family-planning benefits
- Dedicated care coordination support for our LGBTQ+ community
- Generous paid time off, including:
• Vacation, sick time and holidays
• Volunteer time to participate within your community
• Discretionary year-end shutdown
• Paid sabbatical after 5 years; every 3 years thereafter - Generous Paid Leave offerings, including 18 weeks of 100% paid parental leave for all new parents
- 401k match and Financial Planning tools
- Moderna-paid Life, LTD and STD insurance coverages, as well as voluntary benefit options
- Complimentary concierge service including home services research, travel booking, and entertainment requests
- Free parking or subsidized commuter passes
- Location-specific perks and extras
About Moderna
Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world.
By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities.
We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S.
As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute and make a meaningful impact.
If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities.
Moderna is a smoke-free, alcohol-free and drug-free work environment.
Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply
Moderna is proud to be an equal opportunity workplace and is an affirmative action employer.
Moderna is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. Moderna is an E-Verify Employer in the United States. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
Belonging, Inclusion, and Diversity are critical to the success of our company and our impact on society. We're focused on attracting, retaining, developing, and advancing our employees and believe that by cultivating diverse experiences, backgrounds, and ideas, we can provide an environment where every employee is able to contribute their best.
Moderna is committed to offering reasonable accommodations to qualified job applicants with disabilities. Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should contact the Accommodations team at leavesandaccommodations@modernatx.com. (EEO/AAP Employer)
-
Senior Cloud Security Engineer
1 week ago
Cambridge, Massachusetts, United States HubSpot Full timeAbout UsAt HubSpot, we're committed to empowering businesses to grow better. As a leading customer relationship management (CRM) platform, we provide software and support to help organizations achieve their goals. Our mission is to help millions of businesses around the world transform the way they attract, engage, and delight customers.We're seeking an...
-
Vulnerability Management Specialist
2 weeks ago
Cambridge, Massachusetts, United States Moderna Full timeAbout the JobWe are looking for a Vulnerability Management Specialist to join our team at Moderna. In this role, you will be responsible for developing and implementing a comprehensive vulnerability management program, conducting regular vulnerability assessments and penetration testing, and continuously monitoring and assessing publicly disclosed...
-
Vulnerability Research Engineer
7 days ago
Cambridge, Massachusetts, United States Draper Labs Full timeAbout the Role:We are looking for a skilled Cybersecurity Expert to join our Offensive Cyber Security Group in Cambridge, MA. The ideal candidate will have experience in assessing hardware and software for security vulnerabilities and developing tailored solutions to meet DoD and IC Sponsor directives.
-
Security Engineer
2 months ago
Cambridge, United States S&P Global Full timeKensho is S&P Global’s hub for AI innovation and transformation. With expertise in Machine Learning and data discovery, we develop and deploy novel solutions for S&P Global and its customers worldwide. Our solutions help businesses harness the power of data and Artificial Intelligence to innovate and drive progress. Kensho's solutions and research focus on...
-
Senior Security Systems Engineer
2 days ago
Cambridge, Massachusetts, United States Draper Labs Full timeAbout the JobDraper Labs is seeking a Senior Security Systems Engineer to join our Secure Solutions Group. As a Senior Security Systems Engineer, you will be responsible for integrating and deploying trustworthy secure platforms that resist cyber, reverse engineering, and supply chain threats.The ideal candidate will have a strong background in systems...
-
Enterprise Security Manager
2 weeks ago
Cambridge, Massachusetts, United States Moderna Full timeAbout the RoleModerna is seeking an Enterprise Security Manager to join our team. In this role, you will be responsible for ensuring the security posture of enterprise assets by developing and implementing a comprehensive vulnerability management program. You will also conduct regular vulnerability assessments and penetration testing, and continuously...
-
Enterprise Security Specialist
2 weeks ago
Cambridge, Massachusetts, United States S&P Global Full timeAbout UsS&P Global is a leader in AI innovation and transformation. Our Kensho division develops and deploys novel solutions for our customers worldwide, harnessing the power of data and Artificial Intelligence to drive progress.Job DescriptionThis role offers the opportunity to join our Infrastructure team as a seasoned Cybersecurity Engineer. You will work...
-
Security Solutions Architect
1 week ago
Cambridge, Massachusetts, United States S&P Global Full timeCompany OverviewKensho is a division of S&P Global, dedicated to AI innovation and transformation. With expertise in Machine Learning and data discovery, we develop and deploy novel solutions for our customers worldwide.Job ResponsibilitiesImplement security frameworks to ensure alignment with S&P Global standardsDevelop and update security plans, including...
-
Application Vulnerability Specialist
2 days ago
Cambridge, Massachusetts, United States HubSpot Full timeAs a cybersecurity expert, you'll play a critical role in protecting HubSpot's customers and data. With a focus on cloud security, you'll help identify and mitigate potential threats to our applications and infrastructure. You'll work closely with our Product and Security teams to ensure that our security posture is aligned with industry standards and best...
-
Cybersecurity Engineer
1 week ago
Cambridge, Massachusetts, United States S&P Global Full timeJob OverviewWe are seeking a seasoned Cybersecurity Engineer to join our team at S&P Global. As a key member of our security team, you will be responsible for ensuring the security and integrity of our systems and web applications.ResponsibilitiesImplement security frameworks to ensure alignment with S&P Global standardsDevelop and update security plans,...
-
Senior Engineering Manager
4 weeks ago
Cambridge, Massachusetts, United States Lincoln Property Company Full timeJob OverviewThis role is responsible for overseeing the operations and maintenance of assigned buildings, working closely with the Chief Engineer to direct mobile engineers and support field operations.We are seeking a highly skilled individual to join our team as an Senior Engineering Manager, responsible for ensuring the smooth operation of our building...
-
AWS Security Expert
3 days ago
Cambridge, Massachusetts, United States NavitsPartners Full timeSenior IT Security Analyst Job DescriptionWe are seeking an experienced AWS Security Expert to join our team at NavitsPartners. In this role, you will be responsible for identifying, deploying, and integrating security controls into the Medicaid Management Information System (MMIS) system.The ideal candidate will have extensive experience implementing...
-
Senior Network Infrastructure Specialist
1 week ago
Cambridge, Massachusetts, United States Management Recruiters International Full timeWe are excited to offer a unique career growth opportunity for an exceptional Sr. Enterprise Network Engineer. Our client, a solid established award-winning IT Solution Provider in the Boston area, is seeking a senior level network engineer to work with their largest clients on their complex global networking requirements.About the CompanyOur client...
-
Senior Software Engineering Manager
4 weeks ago
Cambridge, Massachusetts, United States Capital One Full timeCapital One is seeking a seasoned Senior Software Engineering Manager to lead a portfolio of diverse technology projects and teams. With a passion for innovation, you will drive transformation within the company by creating solutions that meet regulatory needs.This role requires at least 4 years of professional software engineering experience, with at least...
-
Information Security Specialist
2 weeks ago
Cambridge, Massachusetts, United States Massachusetts Institute of Technology Full time**Job Overview:**Mission-driven professionals sought to improve the security posture of the Massachusetts Institute of Technology through network monitoring, incident response, vulnerability management, security awareness, and compliance-related work.We are looking for a skilled Information Security Analyst to join our team. The ideal candidate will have a...
-
Cloud Security Architect
2 months ago
Cambridge, United States InterSystems Full timeCloud Security Architect A cloud security architect must be conversant with a breadth of technologies used to protect data, workloads, and systems within cloud platforms. Responsibilities of a cloud security architect include: Designing and implementing cloud security strategies and policies that meet an organization's specific needs. Ensuring the security...
-
Senior Data Engineer
4 months ago
Cambridge, United States Edge Staffing Full timePosition: Senior Data EngineerLocation: Cambridge, MAEmployment Type: Hybrid (2-3 days per week in-office)Overview:Our client, an innovative software industry leader, is seeking a highly skilled Senior Data Engineer to join their dynamic team in Cambridge, MA. This is a hybrid role, offering the flexibility to work both remotely and on-site 2-3 days a week....
-
Senior Mixed Signal Electronics Design Engineer
2 weeks ago
Cambridge, United States Disability Solutions Full timeSenior Mixed Signal Electronics Design Engineer Direct Hire Position is Onsite and or Onsite/Hybrid Current in scope US Government Top Secret security clearance is required Job Description Summary: A Senior Electronic/Electrical Engineer designs, develops, tests, and oversees the manufacturing of electrical printed circuit boards (PCBs), analog and...
-
Senior Mixed Signal Electronics Design Engineer
2 weeks ago
Cambridge, United States GCR Professional Services Full timeSenior Mixed Signal Electronics Design Engineer Direct Hire Position is Onsite and or Onsite/Hybrid Current in scope US Government Top Secret security clearance is required Job Description Summary: A Senior Electronic/Electrical Engineer designs, develops, tests, and oversees the manufacturing of electrical printed circuit boards (PCBs), analog and...
-
Senior Manager, Software Engineering Lead
4 weeks ago
Cambridge, United States Capital One Full timeCapital One is a leading financial services company that empowers customers to achieve financial well-being. We're seeking a seasoned Senior Manager, Software Engineering Lead to join our team.
