Sandisk
Senior Vulnerability Management Engineer
Company Description
Sandisk understands how people and businesses consume data and we relentlessly innovate to deliver solutions that enable today’s needs and tomorrow’s next big ideas. With a rich history of groundbreaking innovations in Flash and advanced memory technologies, our solutions have become the beating heart of the digital world we’re living in and that we have the power to shape.
Job Description We are seeking a highly skilled and experienced Senior Vulnerability Management Engineer to spearhead our vulnerability assessment, remediation, and attack surface reduction efforts. This position involves leading the identification, assessment, and mitigation of vulnerabilities across various platforms, networks, and applications, with a focus on reducing the organization’s attack surface. The ideal candidate will have deep understanding of Enterprise IT and Engineering landscape and a proven track record in vulnerability management, with in-depth expertise in identifying, prioritizing, and mitigating vulnerabilities across complex enterprise environments.
Essential Duties And Responsibilities
Lead Vulnerability Management: Own the vulnerability management lifecycle, including identification, assessment, prioritization, remediation, and reporting of security vulnerabilities. Oversee regular vulnerability scans, penetration tests, and security assessments.
Attack Surface Reduction: Analyze and map the organization’s attack surface, identify potential entry points, and develop strategies to reduce exposure.
Collaboration & Mentorship: Work closely with cross‑functional teams, provide mentorship and training to junior security team members.
Stakeholder Communication: Communicate findings and risk mitigation strategies to technical and non‑technical stakeholders, including senior leadership.
Governance & Continuous Improvement: Stay current with the latest tools and methodologies, continuously improve the program and ensure compliance with industry standards and regulations.
Automation and Tooling: Evaluate and implement tools to automate scanning, risk assessment, and remediation tracking.
Qualifications Required
Deep understanding of vulnerability management tools (Nessus, Qualys, Tenable) and security technologies.
Extensive experience in vulnerability assessment and management within large‑scale, complex IT environments.
Proficiency in scripting languages (Golang, Python, Bash, PowerShell) and automation tools.
Preferred
Relevant certifications such as CISSP, CISM, or CEH.
Exceptional communication skills and ability to translate technical issues into business risks.
Capability to make critical decisions under pressure in complex situations.
Experience in a global, large‑scale manufacturing environment.
EEO Statement Sandisk is committed to providing equal opportunities to all applicants and employees and will not discriminate based on race, color, ancestry, religion, sex, gender, age, national origin, sexual orientation, medical condition, marital status, disability, or other legally protected characteristics. We prohibit harassment of any individual on any of the characteristics listed above. Our non‑discrimination policy applies to all aspects of employment.
Sandisk is committed to offering opportunities to applicants with disabilities and ensuring all candidates can navigate our careers website and hiring process. Please contact us at jobs.accommodations@wdc.com for accommodations.
Application Deadline The anticipated application deadline is 03/18/2026, although we reserve the right to close the process sooner if a suitable candidate is hired.
Compensation & Benefits
Salary range is presented as a possible compensation range; actual pay may vary based on factors such as education, experience, skills, performance, location, shift, equity, and business needs.
Eligible for Short‑Term Incentive (STI) Plan and, depending on role and performance, long‑term incentive (LTI) program.
Comprehensive benefits package includes paid vacation, sick leave, medical/dental/vision insurance, life and disability insurance, flexible spending accounts, employee assistance program, tuition reimbursement, transit, stock purchase plan, and 401(k) plan.
#J-18808-Ljbffr
Sandisk understands how people and businesses consume data and we relentlessly innovate to deliver solutions that enable today’s needs and tomorrow’s next big ideas. With a rich history of groundbreaking innovations in Flash and advanced memory technologies, our solutions have become the beating heart of the digital world we’re living in and that we have the power to shape.
Job Description We are seeking a highly skilled and experienced Senior Vulnerability Management Engineer to spearhead our vulnerability assessment, remediation, and attack surface reduction efforts. This position involves leading the identification, assessment, and mitigation of vulnerabilities across various platforms, networks, and applications, with a focus on reducing the organization’s attack surface. The ideal candidate will have deep understanding of Enterprise IT and Engineering landscape and a proven track record in vulnerability management, with in-depth expertise in identifying, prioritizing, and mitigating vulnerabilities across complex enterprise environments.
Essential Duties And Responsibilities
Lead Vulnerability Management: Own the vulnerability management lifecycle, including identification, assessment, prioritization, remediation, and reporting of security vulnerabilities. Oversee regular vulnerability scans, penetration tests, and security assessments.
Attack Surface Reduction: Analyze and map the organization’s attack surface, identify potential entry points, and develop strategies to reduce exposure.
Collaboration & Mentorship: Work closely with cross‑functional teams, provide mentorship and training to junior security team members.
Stakeholder Communication: Communicate findings and risk mitigation strategies to technical and non‑technical stakeholders, including senior leadership.
Governance & Continuous Improvement: Stay current with the latest tools and methodologies, continuously improve the program and ensure compliance with industry standards and regulations.
Automation and Tooling: Evaluate and implement tools to automate scanning, risk assessment, and remediation tracking.
Qualifications Required
Deep understanding of vulnerability management tools (Nessus, Qualys, Tenable) and security technologies.
Extensive experience in vulnerability assessment and management within large‑scale, complex IT environments.
Proficiency in scripting languages (Golang, Python, Bash, PowerShell) and automation tools.
Preferred
Relevant certifications such as CISSP, CISM, or CEH.
Exceptional communication skills and ability to translate technical issues into business risks.
Capability to make critical decisions under pressure in complex situations.
Experience in a global, large‑scale manufacturing environment.
EEO Statement Sandisk is committed to providing equal opportunities to all applicants and employees and will not discriminate based on race, color, ancestry, religion, sex, gender, age, national origin, sexual orientation, medical condition, marital status, disability, or other legally protected characteristics. We prohibit harassment of any individual on any of the characteristics listed above. Our non‑discrimination policy applies to all aspects of employment.
Sandisk is committed to offering opportunities to applicants with disabilities and ensuring all candidates can navigate our careers website and hiring process. Please contact us at jobs.accommodations@wdc.com for accommodations.
Application Deadline The anticipated application deadline is 03/18/2026, although we reserve the right to close the process sooner if a suitable candidate is hired.
Compensation & Benefits
Salary range is presented as a possible compensation range; actual pay may vary based on factors such as education, experience, skills, performance, location, shift, equity, and business needs.
Eligible for Short‑Term Incentive (STI) Plan and, depending on role and performance, long‑term incentive (LTI) program.
Comprehensive benefits package includes paid vacation, sick leave, medical/dental/vision insurance, life and disability insurance, flexible spending accounts, employee assistance program, tuition reimbursement, transit, stock purchase plan, and 401(k) plan.
#J-18808-Ljbffr