SailPoint
Cybersecurity
VulnerabilityManagementAnalyst
Neural analysis suggests this role is
optimal for Mid candidates.
“Vulnerability Management Analyst at SailPoint. Skills: Vulnerability Management, Cloud Security, Automation, Risk Assessment. Analyze and prioritize vulnerabilities. Assess vulnerabilities in cloud infrastructure”
What You'll Achieve.
Protecting SailPoint's production environments; Ensure products meet highest standards of security and trust; Reduce organizational risk; Contribute directly to our security posture; Operate with minimal oversight on daily tasks; Fully managing the day-to-day vulnerability lifecycle; Demonstrate deep understanding of risk-based approach; Solidly own all assigned tasks and responsibilities
Industry & Context.
Analyze and prioritize vulnerabilities; Assess vulnerabilities; Identify and remediate vulnerabilities; Help teams remediate vulnerabilities efficiently; Resolve challenges with remediation teams; Work through remediation problems; Prioritizing vulnerabilities; Working through complex problems together
What They're Looking For.
Must Have
2-4 years of experience in vulnerability management, product security, or a similar cybersecurity role, Strong, hands-on experience securing cloud environments, particularly AWS, Technical understanding of core services like EC2, Container technologies such as Kubernetes and Docker, Solid grasp of common product security issues (e.g., OWASP Top 10, SSRF, Injection flaws), Intermediate scripting ability (e.g., Python, PowerShell), Proven ability to build partnerships and communicate effectively with technical and non-technical stakeholders
Nice to Have
Past experience in penetration testing, product security, or the security research community, Certifications such as AWS Certified Security - Specialty, CISSP, CISA, or CySA+, AWS Certified Cloud Practitioner or AWS Certified Security - Specialty certification within the first year of employment
What You'll Do.
Analyze and prioritize vulnerabilities
Assess vulnerabilities in cloud infrastructure
Assess vulnerabilities in containerized environments
Assess vulnerabilities in enterprise infrastructure
Assess vulnerabilities in applications
Partner with DevOps and Engineering
Identify and remediate vulnerabilities
Identify and remediate misconfigurations
Drive vulnerability remediation
Explain risks to teams
Identify remediation dependencies
Provide context for remediation
Automate data ingestion
Automate ticketing system integrations
Develop metrics for program health
Provide evidence for compliance
Maintain knowledge of threat landscape
Inform prioritization strategy
How You'll Work.
Team & Collaboration
Work closely with cross-functional partners in IT, DevOps, and Engineering; Partner with DevOps and Engineering; Act as a key liaison; Communicate effectively with technical and non-technical stakeholders; Solidify relationships with key members of the vulnerability management team; Engage with stakeholders in Engineering and Compliance; Confidently engage with engineering teams; Establish and maintain strong, trusted relationships with cross-functional partners
Communication Scope
Communicate effectively with technical and non-technical stakeholders; Explaining risks; Mentoring junior analysts on communication skills
Process & Methodology
Take the lead on an internal team project
Full Job Description
SailPoint is looking for a motivated Vulnerability Management Analyst to join our growing Cybersecurity team. In this role, you will be at the heart of our security operations, responsible for protecting SailPoint's production environments from misconfigurations and software vulnerabilities. You will ensure our products meet the highest standards of security and trust by managing the complete lifecycle of vulnerabilities across our complex, cloud-native infrastructure. As a key member of our threat and vulnerability management team, you will work closely with cross-functional partners in IT, DevOps, and Engineering to reduce our organizational risk. This is a challenging and impactful role where you can grow your skills and contribute directly to our security posture. **What You 'll Do (Core Responsibilities):** * **Analyze & Prioritize:** Triage and assess vulnerabilities discovered in our cloud infrastructure, containerized environments, enterprise infrastructure, and applications, using a risk-based framework that goes beyond standard CVSS scores. * **Cloud Security:** Partner with DevOps and Engineering to identify and remediate vulnerabilities and misconfigurations in our AWS environment. * **Drive Remediation:** Act as a key liaison, explaining risks, identifying dependencies, and providing the necessary context to help teams remediate vulnerabilities efficiently. * **Automate & Improve:** Contribute to the continuous improvement of our program by helping automate data ingestion, reporting, and ticketing system integrations (e.g., Jira, Slack) using scripting languages like Python or PowerShell. * **Report & Comply:** Develop metrics to report on the health of the vulnerability management program and provide evidence to support compliance and audit needs for frameworks like SOC2, ISO 27001, and FedRAMP. * **Threat Intelligence:** Maintain knowledge of the current threat landscape, including new attack techniques and actively exploited vulnerabilities, to infor
Applying for this Vulnerability Management Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about SailPoint?
Real rants from real employees. Read before you apply.