Lead Vulnerability Analyst

  • Credit Karma
  • San Francisco, CA, USA
  • Mar 25, 2022
Full time Information Technology Management

Job Description

Security is a core value at Credit Karma. We help millions of people better manage their credit. Safeguarding their sensitive information is critical to our continued success. From the CEO down to each individual engineer, everyone views security as a personal responsibility. Your unique mission as a Lead Vulnerability Analyst is to mine a deep data set of security event information for useful signals and feed the results into automated actions and infrastructure changes.

What You'll Do

  • Lead, mentor, and serve as an escalation point for Vulnerability Analysts in Credit Karma's security team.
  • Review patch releases from vendors and assess risk and recommended actions to patch bulletins. Work with operations groups to orchestrate patch deployments.
  • Create a repeatable, scalable vulnerability management process to include agreed upon SLAs for remediation based on severity.
  • Engage with partners in engineering, IT, and operations to respond to and remediate vulnerabilities.
  • Identify opportunities for implementing additional technology controls to create more visibility or defend key points of attack.
  • Monitor vulnerability feeds and scan results for applicable vulnerabilities, validate and remove false positives, risk rank and propose remediation activities.

What's Great About It

  • Carrying out two positive missions at the same time: helping people take back control of their credit and helping to keep their personal information safe.
  • Solving frontier security problems at scale in a highly technology-focused team.
  • Spending zero minutes convincing anyone why security is important - we all understand that very well already!

What We Expect

  • 10+ years of vulnerability management experience.
  • Strong scripting or relevant programming skills.
  • A creative forensic mindset.
  • Self-starting attitude and fearless ascent up the learning curve.
  • Eagerness to challenge the status quo, balanced with a reasonable and methodical approach to effecting change.
  • A fun and positive attitude!