[Remote] Senior Vulnerability Manager at Keeper Security

El Dorado Hills, California, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

CybersecurityIndustries

Requirements

7+ years of experience in vulnerability management, security engineering, or cyber risk management
Proven success managing enterprise-scale vulnerability programs across SaaS and public-sector environments
Deep expertise in vulnerability scanning, CVE/CVSS scoring, exploit analysis, and risk prioritization
Strong understanding of cloud environments (AWS, GCP, Azure) and modern application stacks
Demonstrated ability to communicate technical risk clearly to both executive and non-technical stakeholders
Solid grasp of relevant compliance frameworks: NIST SP 800-53, CIS Controls, ISO 270

Responsibilities

Own Keeper’s enterprise vulnerability management strategy, governance, and SLAs across all environments
Build scalable processes for vulnerability discovery, risk scoring, and remediation across multi-cloud and SaaS infrastructure
Manage vulnerability scanning and asset discovery tools (e.g., Tenable.io) and ensure continuous coverage
Correlate vulnerability data with threat intelligence and exploit activity to drive risk-based prioritization
Partner with Engineering, DevOps, IT, and Cloud Operations to ensure timely remediation and SLA adherence
Integrate vulnerability tracking and remediation into CI/CD and ticketing systems (e.g., Jira, ServiceNow, GitLab)
Automate scanning, correlation, and reporting workflows using scripting and API integrations
Develop dashboards and analytics to measure exposure trends and risk reduction progress
Monitor zero-day vulnerabilities, CISA KEV bulletins, and exploit campaigns to guide proactive mitigation
Ensure compliance alignment with frameworks such as FedRAMP, StateRAMP, SOC 2, ISO 27001, and NIST 800-53
Communicate vulnerability insights and risk metrics to leadership and key stakeholders
Mentor engineers and analysts, fostering a culture of precision, accountability, and continuous improvement
Represent vulnerability management in executive briefings, audits, and public-sector engagements

Skills

Key technologies and capabilities for this role

Vulnerability ManagementFedRAMPDevOpsCloud OperationsRisk PrioritizationRemediationZero-TrustSOC 2ISO 27001Privileged Access ManagementSecure Remote Access

Questions & Answers

Common questions about this position

Is this position remote or does it require office work?

This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based in the El Dorado Hills, CA or Chicago, IL metro area.

What key responsibilities does the Senior Vulnerability Manager role involve?

The role involves owning the enterprise vulnerability management strategy, building scalable processes for discovery, risk scoring, and remediation, managing scanning tools like Tenable.io, partnering cross-functionally for remediation, and automating workflows.

What technical tools and skills are required for this position?

Experience with vulnerability scanning tools like Tenable.io, scripting and API integrations for automation, CI/CD and ticketing systems such as Jira, ServiceNow, and GitLab, and multi-cloud/SaaS infrastructure is required.

What salary or compensation is offered for this role?

This information is not specified in the job description.

What kind of experience makes a strong candidate for this role?

Strong candidates will have experience leading enterprise vulnerability management programs, IL5 DevOps expertise, and the ability to work cross-functionally with Engineering, DevOps, IT, and Security Operations while ensuring compliance with frameworks like FedRAMP and NIST 800-53.

Keeper Security

Cybersecurity solutions for data protection

About Keeper Security

Keeper Security provides cybersecurity solutions aimed at protecting sensitive data for individuals and businesses. Its main product is a zero-knowledge security platform, which means that the company cannot access the data stored by its users, ensuring high levels of privacy and security. This platform is scalable, allowing it to adapt to the needs of various organizations, from small businesses to large enterprises. Unlike many competitors, Keeper Security is recognized for its extensive audits and certifications, which enhance user trust. The company operates on a subscription-based model, offering tailored plans for personal, family, student, business, and enterprise use, with options for multi-year commitments that provide savings. The goal of Keeper Security is to deliver reliable data protection while ensuring continuous updates and support for its users.

Chicago, IllinoisHeadquarters

2011Year Founded

$58.6MTotal Funding

GROWTH_EQUITY_VCCompany Stage

CybersecurityIndustries

201-500Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Life Insurance

Disability Insurance

401(k) Retirement Plan

401(k) Company Match

Unlimited Paid Time Off

Risks

Emerging cybersecurity startups could erode Keeper's market share.

AI-driven cyber threats require Keeper to continuously adapt its security protocols.

Regulatory scrutiny on data privacy may increase Keeper's compliance costs.

Differentiation

Keeper Security offers a zero-knowledge security platform ensuring maximum data privacy.

The company is SOC-2 and ISO 27001 certified, enhancing trust and reliability.

Keeper's subscription model provides continuous updates and tailored plans for diverse customer needs.

Upsides

Growing demand for zero-trust architecture boosts Keeper's market potential.

Strategic partnerships, like with Sherweb, expand Keeper's market reach.

Increased cybersecurity needs in sectors like legal and sports enhance Keeper's relevance.

Land your dream remote job 3x faster with AI

Try Jobo Free