Vulnerability & Cloud Security Program Manager
Auto Import<div><div> </div><div><div><strong>About the role </strong></div><div> </div></div><div><div><span><span>The Vulnerability & Cloud Security Program Manager leads the enterprise vulnerability management and cloud security posture management (CSPM) programs, ensuring<span> </span></span><span>timely</span><span><span> </span>identification, assessment, prioritization, and remediation of risks across<span> </span></span><span>on-premise</span><span>, cloud, and application environments. This role<span> </span></span><span>leverages</span><span><span> </span>modern cloud security and vulnerability management platforms to<span> </span></span><span>monitor</span><span>, analyze, and strengthen our security posture. You will collaborate closely with engineering, DevOps, and infrastructure teams to reduce risk exposure, support compliance obligations, and advance the organization’s overall security maturity</span><span>. </span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>Location</strong><span><span> - We are flexible on remote working from home, if you<span> </span></span><span>are located in</span><span><span> </span>the </span></span><span><span>USA</span></span><span><span> and reside in one of the following states - </span></span><strong>CA, CO, CT, FL, GA, *IL, KS, ME, </strong><span><strong>MA</strong><span>, <strong>MD</strong></span></span><strong>, NJ, NC, NY, OR, TN, TX, </strong><span><span><strong>VA,</strong> </span></span><span><span>and</span></span><span><span> <strong>WA</strong></span></span><span><span><strong>.</strong> We have physical offices in Austin, TX and Tampa, FL, if you prefer a hybrid<span> </span></span><span>option</span><span>.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>What You’ll Be Doing </strong></div></div><div><ul><li><div><span><span>Lead and<span> </span></span><span>operate</span><span><span> </span>the full vulnerability management and CSPM lifecycle, ensuring<span> </span></span><span>timely</span><span><span> </span>discovery, assessment, prioritization, and remediation.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Administer and<span> </span></span><span>optimize</span><span><span> </span></span><span>our vulnerability</span><span><span> </span>management and CSPM platforms, including policies, integrations, reporting, and automation.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Monitor cloud and infrastructure environments to<span> </span></span><span>identify</span><span><span> </span>misconfigurations, excessive permissions, and compliance drift, primarily in AWS.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Partner with engineering and DevOps teams to drive remediation efforts,<span> </span></span><span>facilitate</span><span><span> </span>triage discussions, and<span> </span></span><span>provide</span><span><span> </span>technical guidance on complex issues.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Align security practices with frameworks such as FedRAMP, NIST CSF, ISO 27001, and CIS Controls.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Track and report key KPIs and risk metrics to leadership, including SLA compliance and vulnerability trends.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Automate detection, remediation workflows, and tool integrations to enhance efficiency and expand security capabilities</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Other duties as needed </span></span><span> </span></div></li></ul></div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>About You </strong></div></div><div><ul><li><div><span><span>Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>5+ years of experience in vulnerability management and at least 2+ years<span> </span></span><span>in</span><span><span> </span>cloud security.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Hands-on experience with CSPM tools, vulnerability detection platforms, and automation (Wiz, AWS Inspector, Nessus,<span> </span></span><span>OpenSCAP</span><span><span> </span>preferred).</span></span><span> </span></div></li></ul></div></div><div><div><ul><li><div><span><span>Strong understanding of AWS security best practices and cloud-native architectures.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Familiarity with vulnerability scoring systems like CVSS and risk-based prioritization.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Excellent communication, collaboration, and stakeholder management skills.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Security certifications such as CISSP, AWS Security Specialty, or GIAC Cloud Security are a plus.</span></span><span> </span></div></li></ul></div><div><ul><li><div><span><span>Preferred knowledge of regulatory and compliance frameworks such as PCI DSS, HIPAA, SOX, FedRAMP.</span></span><span> </span><span><span></span></span><span> </span></div></li></ul></div><div> </div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>About Us </strong><span> </span></div><div> </div></div><div><div><span><span>NinjaOne</span><span><span> </span>automates the hardest parts of IT to deliver visibility, security, and control over all endpoints for more than 40,000 customers. The<span> </span></span><span>NinjaOne</span><span><span> </span>automated endpoint management platform is proven to increase productivity, reduce security risk, and lower costs for IT teams and managed service providers.<span> </span></span><span>NinjaOne</span><span><span> </span>is obsessed with customer success and provides free and unlimited onboarding, training, and support.<span> </span></span><span>NinjaOne</span><span><span> </span>is #1 on G2 in endpoint management, patch management, remote monitoring and management, and mobile device management.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>What You’ll Love </strong><span> </span></div></div><div><div><span><span>We are a collaborative, kind, and curious community. </span></span><span> </span></div></div><div><div><span><span>We honor your flexibility needs with full-time<span> </span></span><span>work that is</span><span><span> </span>hybrid remote. </span></span><span> </span></div></div><div><div><span><span>We have you covered with our comprehensive benefits package, which includes medical, dental, and vision insurance.</span></span><span> </span></div></div><div><div><span><span>We help you prepare for your financial future with our 401(k) plan.</span></span><span> </span></div></div><div><div><span><span>We prioritize your work-life balance with our unlimited PTO.</span></span><span> </span></div></div><div><div><span><span>We reward your work with<span> </span></span><span>opportunity</span><span><span> </span>for growth and advancement.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><strong>Additional Information </strong></div></div><div><div><span><span>This position is NOT eligible for Visa sponsorship</span><span>. </span></span><span><span>Due to federal government security requirements associated with our FedRAMP-authorized environment, candidates must be U.S. citizens or lawful permanent residents.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><span><span>*Due to operational policies,<span> </span></span><span>NinjaOne</span><span><span> </span>is unable to hire for this role within the city limits of Chicago. We will consider all qualified candidates who<span> </span></span><span>reside</span><span><span> </span>outside of the city proper or are willing to self-relocate.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><span><span>Starting pay for the successful applicant depends on a variety of job-related factors, including but not limited to location, market demands, experience, job-related knowledge, and skills.</span><span><span> </span>The benefits available for this position include medical, dental, vision, 401(k) plan, life insurance<span> </span></span><span>coverage</span><span><span> </span>and PTO. For roles based in California, Colorado, Maryland, New Jersey, or<span> </span></span><span>Washington</span><span><span> </span>the base salary hiring range for this position is$180,000 to $220,000</span></span><span><span><span> </span></span></span><span><span>per year.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><span><span>For roles based in New York, the base salary hiring range for this position is $180,000 to $220,000 </span></span><span><span>per year.</span></span><span> </span></div></div><div><div><span><span> </span></span><span> </span></div></div><div><div><span><span>All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, veteran status, or any other status protected by applicable law. We are committed to providing an inclusive and diverse work environment.</span></span></div></div></div>