54 vulnerability management engineer jobs at 48 companies in Berkeley, CA

1mo
Save
Mark Applied
Hide
Staff Security Engineer – Vulnerability Management
Seattle or Palo Alto or Dallas or Bethesda or Washington
$110k-$230k/yr HybridFull Time
GEICO
GEICO: Provides vehicle and property insurance services to consumers.
8+ YOE8+ years in cybersecurity/security engineering; deep vulnerability management, cloud/containers experience; strong Python/Go/Java scripting, SQL, automation, offensive security, and ability to influence technical stakeholders.
Python, Go, Java, SQL, CI/CD, DevSecOps, SIEM, SOAR
2mo
Save
Mark Applied
Hide
Senior Security Software Engineer, Vulnerability Management
San Mateo, California, United States
$217k-$269k/yr OnsiteFull Time
Roblox
RobloxNYSE: RBLX: Platform for creating and playing user-generated 3D digital experiences.
4+ YOE4+ years in software engineering with a security focus; proficient in Python, Go, Java, or C#; strong problem-solving; track record delivering features and solving operational problems.
Python, Go, Java, C#
3w
Save
Mark Applied
Hide
Security Engineer, Vulnerability Management and Automation
San Jose, California, United States
$150k-$350k/yr OnsiteFull Time
Figure
Figure: Develops autonomous humanoid robots for commercial and residential tasks.
6+ YOE6+ years enterprise/cloud security engineering; B.S. in CS/Engineering/Information Systems or equivalent experience; strong software engineering (C/C++, Rust, Golang, Python); experience with Azure/AWS/GCP, federated auth (SAML, SCIM, OIDC), network security, and cloud security.
SAML, SCIM, OPA, OIDC, mTLS, 802.1X, SSH, DNSSEC, Certificate transparency, VPN, Azure, AWS, Google Cloud Platform, C/C++, Rust, Golang, Python
2mo
Save
Mark Applied
Hide
Site Reliability Engineer
San Francisco or South San Francisco
$150k/yr OnsiteFull Time
VantageScore
VantageScore: Provides credit scoring and data analytics solutions.
5+ YOEExperienced Site Reliability Engineer with a DevSecOps focus; patch management, vulnerability remediation; AWS and CI/CD, security tooling.
AWS, EC2, ECS, Lambda, EKS, S3, RDS, IAM, VPC, CloudTrail, Config, GuardDuty, GitHub Actions, CodePipeline, Terraform, CloudFormation, AWS CDK, Kubernetes, Snyk, Wiz, Prisma Cloud, Kong, HashiCorp Vault, Secrets Manager, CloudWatch, Datadog, Grafana
1w
Save
Mark Applied
Hide
Senior Security Engineer
Boston or Chicago or Los Angeles or New York or San Francisco or Toronto or Vancouver or Vancouver
$145k-$175k/yr RemoteFull Time
Later
Later: Provides software for social media scheduling and influencer marketing.
5+ YOE5+ years security engineering experience; strong application, cloud, and infrastructure security; SOC 2 and compliance experience; vulnerability management, IaC and CI/CD security; strong communication and software engineering skills.
OWASP, NIST, CIS Controls, SOC 2, ISO 27001, AWS Security Hub, Azure Security Center, GCP Security Command Center, SIEM, SOAR, Terraform, CloudFormation, C#, CI/CD
1mo
Save
Mark Applied
Hide
Engineer, Production Engineering
San Francisco, California, United States
HybridFull Time
Guild.ai
Guild.ai: Building a neutral control plane for production AI agents.
5+ YOE5+ years production/platform engineering experience; hands-on Kubernetes, GCP/GKE, and Terraform; programming in Python, Go, TypeScript; SOC2/compliance, vulnerability management, observability, HackerOne, and Okta experience.
Kubernetes, GKE, GCP, Terraform, AWS, Azure, OpenTelemetry, New Relic, Splunk, HackerOne, Okta, Python, Go, TypeScript, SOC2
1w
Save
Mark Applied
Hide
Senior Staff DevOps Engineer
Santa Clara, California, United States
$216k-$283k/yr OnsiteFull Time
IonQ
IonQNYSE: IONQ: Develops and sells trapped-ion quantum computers and cloud services.
12+ YOE12+ years production engineering experience; hands-on CI/CD platform, IaC, pipeline security, release and dependency management, scripting/automation, and vulnerability remediation.
AWS Agent Core, SBOM, SLSA
3w
Save
Mark Applied
Hide
Security Engineer, Application Security
San Francisco, California, United States
$200k-$325k/yr OnsiteFull Time
Serval
Serval: AI platform for automating IT and enterprise service workflows.
10+ YOE10+ years in cybersecurity with deep expertise in application security, secure SDLC, vulnerability management, secure cloud-native architecture, leadership experience, and strong software engineering skills.
SAST, DAST, SCA, secrets scanning, fuzzing, CI/CD
3w
Save
Mark Applied
Hide
Senior Security Engineer
San Francisco, California, United States
$180k-$250k/yr RemoteFull Time
LanceDB
LanceDB: Vector database for multimodal AI search and retrieval.
8+ YOE8+ years as a software engineer with experience on large-scale data platforms, building encryption/auth/authZ, cloud/CSP security, vulnerability management (CVE), strong communication and data-driven decision making.
1mo
Save
Mark Applied
Hide
Security Engineer, Wearables (RL)
Burlingame, California, United States
$219k-$301k/yr OnsiteFull Time
Meta
MetaNASDAQ: META: Develops social networking platforms and virtual reality technologies.
10+ YOE10+ years security experience, BS/MS in CS/Engineering or equivalent, experience leading cross-functional programs, expertise in threat modelling, vulnerability management, AWS, and infrastructure hardening.
Rust, C, C++, Python, AWS, HSMs, SBOM, Code signing, secure boot, device attestation
2w
Save
Mark Applied
Hide
Security Engineer
San Francisco or Palo Alto or Toronto or Los Angeles
OnsiteFull Time
HeyGen
HeyGen: Generate professional AI videos using digital avatars and voices.
Hands-on Python and AWS experience, cloud and application security, vulnerability management, IAM and secrets management, familiarity with SOC 2/ISO 27001, strong communication and threat modeling skills.
Python, AWS, Drata, Infisical, Bugcrowd, SOC 2, ISO 27001
1w
Save
Mark Applied
Hide
Senior Security Engineer- San Francisco HQ
San Francisco, California, United States
$195k-$265k/yr HybridFull Time
Orb
Orb: Billing infrastructure for usage-based and consumption software pricing.
5+ YOE5+ years software or security engineering; hands-on cloud-native security (AWS); application and infrastructure security, IAM, vulnerability management, detection/response; strong coding and autonomous problem-solving.
Typescript, React, Tailwind CSS, Python, PostgreSQL, Apache Druid, Clickhouse, Kafka, Spark Streaming, AWS
1w
Save
Mark Applied
Hide
Senior Security Engineer
Sunnyvale, California, United States
HybridFull Time
Meshy
Meshy: AI-powered platform for rapid 3D model and asset generation.
3+ YOE3+ years security or cloud security experience; expertise in IAM, networking, container and secrets security; incident response, vulnerability management, CI/CD integration, secure SDLC, and compliance (SOC 2/ISO 27001).
4w
Save
Mark Applied
Hide
Lead Senior Security Engineer (Enterprise AI Platform)
Palo Alto, California, United States
HybridFull Time
Evolver
Evolver: AI-powered platform automating complex workflows for professional services firms.
8+ YOE8+ years in security architecture/engineering for cloud-native or enterprise SaaS; deep cloud (Azure) and application security, IAM, SSO/SAML/OIDC, RBAC, secrets and vulnerability management; experience with enterprise customers and compliance (SOC 2/ISO 27001).
Microsoft Azure, SSO, SAML, OIDC, RBAC, CI/CD, infrastructure-as-code, API, containers
1mo
Save
Mark Applied
Hide
Principal / Staff Security Engineer - AI Platform & DevSecOps
Palo Alto, California, United States
$210k-$270k/yr HybridFull Time
AiDash
AiDash: Satellite-first AI platform for utility and infrastructure resilience
10+ YOE10+ years in security engineering; 3+ years leading DevSecOps or platform-security in cloud native environments; strong AppSec, AI security, EDR/XDR, zero-trust, SBOM/AIBOM, vulnerability management, IaC policy-as-code, Kubernetes security, DLP, and SOC 2/ISO experience.
SAST, DAST, SCA, IaC policy-as-code, OWASP LLM Top 10, MITRE ATLAS, DLP tooling, SIEM, EDR/XDR, Cloud security platforms, Kubernetes security, Zero-trust tools, GRC tooling, Terraform, OPA/Rego, Checkov, Kyverno, tfsec, Falco, gVisor, Kata, Telepor t/StrongDM/BeyondTrust/HashiCorp Boundary, Anchore, Dependency-Track, Trivy, Aqua, Wiz, Lacework, CSPM, Snyk, Veracode, CodeQL, Semgrep, Codacy, Nightfall, Giskard, GigaText
3w
Save
Mark Applied
Hide
Product Security Engineer
San Francisco or New York City or London or Berlin or United States
$208k-$312k/yr HybridFull Time
Vercel
Vercel: Frontend cloud platform for building and hosting web applications.
5+ YOE5+ years product security experience; threat modeling, secure code review, vulnerability management, OSS/supply-chain security, SAST/DAST and dependency scanning, CI/CD security integration, familiarity with JavaScript/TypeScript, Node.js, and Next.js; technical leadership skills.
Next.js, Node.js, JavaScript, TypeScript, GitHub Advanced Security (GHAS), GitHub workflows, CI/CD, SAST, DAST, Dependabot, Snyk, Open Policy Agent, Terraform
3w
Save
Mark Applied
Hide
Product Security Engineer - Hardware/Firmware
Milpitas, California, United States
$148k-$245k/yr HybridFull Time
Sandisk
SandiskNasdaq: SNDK: Designs and manufactures flash memory and data storage products.
5+ YOEBachelor's in CS/EE/CE/Cybersecurity, 5+ years in product security or embedded/firmware/hardware security, experience with threat modeling, risk assessment, vulnerability management, and strong communication skills.
SAST, SBOM, CVSS, FIPS 140, Common Criteria
3w
Save
Mark Applied
Hide
Network Security Engineer
San Francisco or United States
HybridFull Time
Kargo
Kargo: Automates warehouse loading docks using computer vision sensor towers.
3+ YOE3+ years network security experience; strong networking knowledge (TCP/IP, DNS, DHCP, VPN, routing, switching); hands-on with firewalls, endpoint protection, vulnerability management; experience securing AWS or Google Cloud Platform; Bachelor’s in related field; security certifications preferred.
TCP/IP, DNS, DHCP, VPN, routing, switching, firewalls, endpoint protection, vulnerability management tools, AWS, Google Cloud Platform, WireGuards, Tailscale, SOC 2, ISO 27001, NIST
2mo
Save
Mark Applied
Hide
Sr. Product Security Engineer
New York or Austin or Miami or Mountain View or Cupertino or Hong Kong or Shanghai or Beijing or Guangzhou or Singapore or India
$215k-$230k/yr RemoteFull Time
YipitData
YipitData: Providing alternative data and research for institutional investors.
3+ YOE3–6 years in security operations, vulnerability management, DevSecOps, or related security engineering; experience with vulnerability workflows, scanning tools, CI/CD; ability to produce security metrics and dashboards.
SCA, SAST, DAST, IaC scanning, container scanning, Git/GitHub, CI/CD pipelines, vulnerability management platforms
3d
Save
Mark Applied
Hide
Senior Cyber Security Engineer - Automation, Data Center & Networking Security
Pittsburgh or Palo Alto
$160k-$240k/yr OnsiteFull Time
Latitude AI
Latitude AI: Developing automated driving technology for next-generation Ford vehicles.
4+ YOEBachelor's in related field and 4+ years experience (or Master's+2). Hands-on experience with cloud/virtualization, vulnerability management, Linux/Mac/Windows hardening, scripting, IaC, network and data center security.
AWS, HPC, MAAS, Lustre, Kerberos, Bash, Python, Go, Java, Terraform, CloudFormation, Ansible, Jenkins, Palo Alto, Fortinet, F5