Logo for Group 1001

Senior Vulnerability Management Engineer

Role overview

Qualifications

  • Bachelor's degree in Computer Science, Information Security, or related academic field
  • 5-7 years of professional experience in information security, focusing on the financial sector
  • Hands-on experience deploying, configuring, and managing vulnerability scanning solutions
  • Strong knowledge of public cloud platforms (e.g., AWS, Azure, GCP) and their security features

Responsibilities

  • Own the end-to-end vulnerability management pipeline
  • Develop a data-driven prioritization framework for vulnerabilities
  • Automate the workflow via SOAR playbooks and APIs
  • Lead technical response for emergency patch cycles

Key facts

Other skills

  • Communication
  • Collaboration
  • Critical Thinking

About the company

Group 1001 logo

Group 1001

Insurance

Group 1001 is a technology-driven financial services company with a mission to empower our customers, employees, and communities by making innovative products accessible to everyone. We strive to demystify how insurance and annuity products are purchased today by leveraging technology to provide intuitive financial solutions for all Americans. As part of our mission, we invest in strategic partnerships to connect with and transform communities through education and sports. As of September 30, 2022, Group 1001 had combined assets under management of $57.5 billion and comprises the following brands: Delaware Life, Gainbridge, Clear Spring Health, Clear Spring Insurance, and Clear Spring Life. Learn more at Group1001.com.

Company details

Company typeSME
IndustryInsurance
Company size501 - 1000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001’s culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets – our employees.

Why This Role Matters:

As a Senior Vulnerability Management Engineer at Group 1001, you are equal parts security practitioner and infrastructure engineer. You will combine your deep vulnerability expertise with systems engineering prowess to identify, prioritize, and drive remediation of risks across cloud, on-prem, applications, and OT/embedded systems.

You will be responsible for shaping the Vulnerability Management function into a system optimized with significant automation. Your goal is to discover, contextualize, and mitigate the increasingly rapid volume, velocity, and nature of vulnerability exploitation in a post-AI world. This role exists to deliver this goal by using systems for discovery, assessment, contextual prioritization, and assignment to the responsible technology owners. Where human effort is required, your expertise helps navigate the edge cases, framework tuning, and hardening the pipeline.


 

How You'll Contribute:

  • Own the end-to-end vulnerability management pipeline: asset discovery > scanning > enrichment > prioritization > assignment > verification > closure.
  • Build, codify, and iterate a data-driven prioritization framework (blending CVSS, EPSS, KEV, exploit availability, asset criticality, exposure/reachability, compensating controls, and business context).
  • Automate the full workflow via SOAR playbooks, webhooks, REST/GraphQL APIs, message queues, and custom scripts where needed.
  • Develop and improve KPIs, metrics, and trending for vulnerability management functions, and bring leadership attention to root-cause issues driving systemic vulnerability risk.
  • Integrate scanners, CMDB/asset inventory, EDR, cloud providers (AWS/Azure/GCP), and others into a single pipeline for management.
  • Continuously reduce noise: dedupe, suppress known-benign, correlate related findings, and auto-close on evidence of remediation.
  • Evaluate and integrate AI/LLM tooling for triage, false-positive suppression, remediation guidance, and vulnerability research — with appropriate guardrails.
  • Lead technical response for emergency patch cycles on various technical platforms.

What We're Looking For:

  • Bachelor's degree in Computer Science, Information Security, or related academic field or equivalent experience.
  • 5-7 years of professional experience in information security, with focus on the financial sector.
  • Hands-on experience deploying, configuring, and managing vulnerability scanning solutions at enterprise scale, including policy design, tuning for noise reduction, and managing performance impact (e.g. Tenable, Microsoft Defender, Wiz, Tanium.)
  • Hands-on experience engineering, integrating, and optimizing for automation of security platforms (e.g. Swimlane, Elastic).
  • Strong knowledge of public cloud platforms (e.g., AWS, Azure, GCP) from an infrastructure and development aspect and their related security features.
  • Familiarity with DevSecOps practices and CI/CD pipelines.
  • Understanding of industry security frameworks, standards, and best practices (e.g., NIST, ISO, CIS).
  • Proficiency in one or more software programming languages (e.g. Python, Golang, JavaScript), particularly for automation of security platform operations, health monitoring, and integration tasks.
  • Strong communication and collaboration skills, with the ability to work closely with engineering, operations and infrastructure teams.
  • Familiarity with compliance standards and regulations.
  • Creativity and critical thinking with the ability to work both independently and collaboratively in a fast-paced environment.
  • Be able to serve as a mentor or subject matter expert to other members within the organization, particularly in the areas of vulnerability management and systems engineering.

Compensation:  

 

Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $190,000/year in our lowest geographic market up to $230,000/year plus bonus in our highest geographic market.  Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

Benefits Highlights:  

Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001’s benefits package. Employees (and their families) are eligible to participate in the Company’s comprehensive health, dental, and vision insurance plan options.  Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability. All employees (regardless of hours worked) have immediate access to the Company’s Employee Assistance Program and wellness programs—no enrollment is required.  Employees may also participate in the Company’s 401K plan, with matching contributions by the Company.

 

Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals.  All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.

#LI-AS1 #LI-REMOTE

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Engineering Manager Related jobs

Other jobs at Group 1001

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.