Information Security Engineer - Vulnerability Management

Foster City, CA

Applications have closed

Zoox

We’re reinventing personal transportation—making the future safer, cleaner, and more enjoyable for everyone. This is on-demand autonomous ride-hailing.

View company page

Zoox is seeking an experienced Security Engineer to join our Vulnerability Management team. The Vulnerability Management team is responsible for the design, implementation, and operations of our Enterprise Vulnerability Management Infrastructure. The Vulnerability Management team works closely with all parts of the organization to help ensure that vulnerabilities are identified, reported, and properly dealt with in accordance with Zoox policies and standards.
This role is focused on design, implementation, maintenance and upkeep of Zoox’s Vulnerability Management program and associated systems. Candidates for this position will need to have applicable experience with information security frameworks (e.g. NIST 800.53), vulnerability discovery and reporting technologies, asset and configuration management systems, 
This role requires a combination of technical, communication, and soft skills in order to be successful. The vulnerability management role requires collaboration with members of the Information Security Governance, IT systems, IT applications, and other teams. Experience with change management and a focus on customer experience as a key component of measuring success is a must.

Responsibilities

  • Asset discovery and network scanning
  • Configuration management
  • Vulnerability management technologies (e.g. Tenable, Rapid7)
  • Security risk management and governance
  • Policy and standards definition, auditing, and compliance

Qualifications

  • 5+ years of IT and/or Security Engineering experience supporting production environments
  • 5+ years of IT systems/application engineering/administration experience
  • Practical knowledge of PKI, cryptography, and certificates
  • Strong understanding of cybersecurity frameworks such as NIST, CIS, ISO
  • Strong understanding of vulnerability scoring frameworks and business risk decision making

Vaccine Mandate
Employees working in this position will be required to be fully vaccinated against the COVID-19 virus. An applicant is considered fully vaccinated two weeks after their second dose in a 2-dose series, such as the Pfizer or Moderna vaccines, or two weeks after a single-dose vaccine, such as Johnson & Johnson’s Janssen vaccine. Applicants will be required to show proof of vaccination status upon receipt of a conditional offer of employment. That offer of employment will be conditioned upon, among other things, an Applicant’s ability to show proof of vaccination status. Please note the Company provides reasonable accommodations in accordance with applicable state, federal and local laws.
About Zoox
Zoox is developing the first ground-up, fully autonomous vehicle fleet and the supporting ecosystem required to bring this technology to market. Sitting at the intersection of robotics, machine learning, and design, Zoox aims to provide the next generation of mobility-as-a-service in urban environments. We’re looking for top talent that shares our passion and wants to be part of a fast-moving and highly execution-oriented team.
Follow us on LinkedIn
A Final Note:You do not need to match every listed expectation to apply for this position. Here at Zoox, we know that diverse perspectives foster the innovation we need to be successful, and we are committed to building a team that encompasses a variety of backgrounds, experiences, and skills.

Tags: Audits Compliance Cryptography Governance Machine Learning NIST PKI Risk management Vulnerabilities Vulnerability management

Region: North America
Country: United States
Job stats:  1  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.