CentralSquare Technologies Logo

CentralSquare Technologies

Vulnerability Operations Engineer (AI) - Remote

Posted Yesterday
Remote
Hiring Remotely in United States
Senior level
Remote
Hiring Remotely in United States
Senior level
Operate and improve an AI-powered vulnerability scanning pipeline, validate fixes with AI coding agents, perform reachability analysis, manage SLA lifecycle for findings, maintain tooling (Orca, Tanium, AWS Patch Manager, Azure DevOps), and collaborate with engineering, DevOps, and Risk/Compliance to deliver remediations and reporting.
The summary above was generated by AI

What We’re About

At CentralSquare, we don’t just build software - we power public servants and uplift communities with Hero-Grade Technology. Every line of code, every feature we deliver helps heroes across North America protect, serve, and save lives. When you join us, you become part of a mission-driven team creating technology that makes communities safer and stronger.

Your Growth Matters. We believe heroes deserve opportunities to rise. That’s why we invest in your career with mentorship, learning programs, and clear paths for advancement. If you’re motivated, there’s no limit to how far you can go.

Your Commitment Deserves Reward. We offer competitive compensation and a benefits package designed to support your life inside and outside of work—tuition reimbursement, parental leave, paid volunteer hours, and unlimited PTO. Plus, our flexible work environment gives you the freedom to balance your heroic work with personal well-being, whether you’re in the office or remote.

Join us and help build the tools that power real-life heroes. Together, we make a difference.


The Role

CentralSquare is seeking a Vulnerability Operations (VulnOps) Engineer to join our Security team. This is an individual contributor role purpose-built for the post-AI era of vulnerability discovery — where AI models can now find and exploit flaws at machine speed, and reactive patch cycles are no longer sufficient.

This role is not an advisory function. The VulnOps Engineer owns the full pipeline from discovery through fix delivery: running AI-powered scanning against CentralSquare’s assets.

Job Duties Include:

Proactive Vulnerability Discovery

  • Operate and continuously improve an AI-powered scanning pipeline across CentralSquare's infrastructure components
  • Use Claude Code\Kiro and Orca to conduct ongoing vulnerability assessments
  • Apply reachability analysis to distinguish genuinely exploitable vulnerabilities from theoretical findings, reducing alert fatigue and focusing remediation effort where risk is real
  • Monitor threat intelligence feeds, CVE disclosures, and coordinated disclosure programs (including Project Glasswing patch releases) to identify newly disclosed vulnerabilities affecting CentralSquare's environment.

Fix Development and Delivery

  • Develop and validate fixes and/or configuration changes using AI coding agents such as Claude Code, verifying resolution without regressions before submission
  • Collaborate with application and infrastructure teams, providing technical context and responding to questions about proposed changes

SLA Ownership and Reporting

  • Own the end-to-end SLA lifecycle for all open findings, maintaining real-time tracking of detection, fix submission, and remediation status in the vulnerability management system
  • Proactively escalate findings approaching SLA breach with remediation options and risk context
  • Produce regular reporting on SLA adherence, remediation velocity, and open risk posture for the security leadership team

Toolchain and Pipeline Maintenance

  • Own the configuration, tuning, and operational health of VulnOps tooling including Orca, Claude Code, Kiro, Tanium, AWS Patch Manager, and Azure DevOps security integrations
  • Evaluate and recommend new tools and capabilities as the AI security tooling landscape evolves

Cross-Functional Collaboration

  • Work closely with application engineering, DevOps, and infrastructure teams to ensure fix delivery and implementation is efficient and minimally disruptive to production environments
  • Provide security guidance to engineering teams in the context of AI-accelerated vulnerability discovery
  • Partner with the Risk and Compliance team to ensure vulnerability data and SLA metrics align with audit and regulatory reporting requirements (NIST CSF, PCI DSS, CJIS)
  • Perform other duties as assigned

Qualifications

Education and Experience

  • Bachelor's degree in Cybersecurity, Computer Science, or Information Technology, or equivalent professional experience
  • 5–7 years of professional experience in vulnerability management, or a security engineering role
  • Demonstrated hands-on experience using AI coding agents (Claude Code or equivalent) to find, evaluate, and generate fixes for vulnerabilities

Technical Skills

  • Experience with cloud security posture management; direct experience with Orca preferred 
  • Patching tools experience (ex. Tanium, AWS Patch Manager) 
  • Experience with traditional vulnerability management tools like Tenable or InsightVM 
  • Hands-on experience with Infrastructure as Code 
  • Strong understanding of reachability analysis and the ability to apply it to distinguish exploitable findings from theoretical risk 
  • Familiarity with dependency and supply chain security concepts, including SBOM generation and management 
  • Working knowledge of common vulnerability classes and their remediation patterns 
  • Understanding of security frameworks including NIST CSF and CIS Controls 

Soft Skills and Work Style

  • Highly systematic and process-driven - capable of managing a high volume of concurrent findings without losing precision or letting items fall through the cracks
  • Self-directed and accountable: this role is measured by fix delivery and SLA outcomes, not activity metrics
  • Strong written communication skills
  • Comfortable working across organizational boundaries, earning credibility with engineering teams through technical quality rather than authority
  • Able to prioritize effectively under pressure, with clear judgment about when to escalate versus resolve independently

CJIS Clearance 

A required part of the onboarding process for this role involves obtaining CJIS (Criminal Justice Information Services) clearance—a critical credential for safeguarding public safety data. At CentralSquare, we’ll stand with you every step of the way to secure this clearance should you be selected for hire. As part of the process, a comprehensive background check will be conducted, and please note that U.S. citizenship or permanent residency is generally required to obtain CJIS clearance. 

CentralSquare Technologies: Where Mission Meets Innovation

CentralSquare Technologies is proud to be an Equal Opportunity Employer. We are committed to fostering a workplace that is inclusive, respectful, and free from discrimination—where all individuals are valued, supported, and provided equal opportunity to succeed.

We place a strong emphasis on supporting military veterans and their spouses and recognize the leadership, discipline, resilience, and mission-oriented mindset they bring to the workforce. The skills developed through military service—such as accountability, teamwork, adaptability, and the ability to perform under pressure—are highly valued at CentralSquare and directly contribute to our success.

In addition to our commitment to veterans, CentralSquare Technologies welcomes and encourages applicants from all backgrounds. We are committed to equal employment opportunity for all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, disability, veteran status, or any other characteristic protected by applicable federal, state, or local law.

Our employees reflect a wide range of experiences, perspectives, and identities, and this diversity strengthens our ability to innovate and serve the public sector, whether through our public safety or public administration businesses. Through our technology, we support public servants and the communities they serve, and we believe our workforce should reflect those communities as well.

If you are seeking an opportunity to contribute to meaningful work that impacts communities nationwide—whether continuing a legacy of service or beginning a new chapter—CentralSquare Technologies invites you to apply.

Your next mission starts here.

Similar Jobs

9 Minutes Ago
Easy Apply
Remote
United States
Easy Apply
146K-225K Annually
Senior level
146K-225K Annually
Senior level
Big Data • Fintech • Mobile • Payments • Financial Services
Design, scale, and operate revenue enablement programs for leaders and sellers, focusing on leader development, unified sales methodology, and scalable new-hire onboarding. Partner cross-functionally to define strategy, drive adoption, measure behavior change, and continuously improve programs through analytics, manager reinforcement, and governance.
Top Skills: ChallengerMeddpiccSpiced
9 Minutes Ago
Easy Apply
Remote
United States
Easy Apply
195K-280K Annually
Senior level
195K-280K Annually
Senior level
Big Data • Fintech • Mobile • Payments • Financial Services
Build, deploy, and maintain AI-powered agents, APIs, and applications for People operations on Snowflake. Turn messy business requirements into production systems, integrate with Workday/Notion/case tools, ensure data governance and security, design multi-model LLM reliability controls, and operate full lifecycle including CI/CD, monitoring, and incident fixes while partnering with non-technical stakeholders.
Top Skills: APIsCase Management ToolsCi/CdContainerizationData GovernanceDbtDocker (Containers)GitGitLlmsMonitoringNotionPythonQuicksilverRbacsSecrets ManagementSnowflakeSnowpark Container ServicesWorkday
20 Minutes Ago
Easy Apply
Remote or Hybrid
United States
Easy Apply
116K-145K Annually
Senior level
116K-145K Annually
Senior level
Cloud • Healthtech • Professional Services • Software • Pharmaceutical
Partner with customers to transition from implementation to self-sufficient operations by driving adoption, governance, SOPs, and enablement for elluminate across clinical data management, analytics, and regulatory use cases. Advise on processes, deliver training, define KPIs, mitigate adoption risks, and support renewals and expansion through demonstrated value realization.
Top Skills: Analytics PlatformsData PlatformsEdcElluminateElluminate Clinical Data Cloud

What you need to know about the Austin Tech Scene

Austin has a diverse and thriving tech ecosystem thanks to home-grown companies like Dell and major campuses for IBM, AMD and Apple. The state’s flagship university, the University of Texas at Austin, is known for its engineering school, and the city is known for its annual South by Southwest tech and media conference. Austin’s tech scene spans many verticals, but it’s particularly known for hardware, including semiconductors, as well as AI, biotechnology and cloud computing. And its food and music scene, low taxes and favorable climate has made the city a destination for tech workers from across the country.

Key Facts About Austin Tech

  • Number of Tech Workers: 180,500; 13.7% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Dell, IBM, AMD, Apple, Alphabet
  • Key Industries: Artificial intelligence, hardware, cloud computing, software, healthtech
  • Funding Landscape: $4.5 billion in VC funding in 2024 (Pitchbook)
  • Notable Investors: Live Oak Ventures, Austin Ventures, Hinge Capital, Gigafund, KdT Ventures, Next Coast Ventures, Silverton Partners
  • Research Centers and Universities: University of Texas, Southwestern University, Texas State University, Center for Complex Quantum Systems, Oden Institute for Computational Engineering and Sciences, Texas Advanced Computing Center

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account