false
Careers
Careers
Overview
Security and Risk Management

Vulnerability Management Engineer (Costa Rica)

  • - Hybrid Remote
Apply Now
< Back to search results
Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an amazing career destination. No matter where in the world or what level of the organization, we approach our work with kindness. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Come help organizations be their best, while you reach new heights with a team that has your back.

About The Role

Do you enjoy securing products which have a global impact? As a Vulnerability Management Engineer you will perform and lead security and vulnerability assessments in collaboration with internal teams, assist in developing new capabilities for our Vulnerability Management Program, and work with other engineers to assure the security of Splunk products. This role will report to the Manager of Vulnerability Management.
 
We are a passionate team who has fun, enjoys a good laugh, but above all else thinks security first. If you are passionate about and have an advanced level of working knowledge in information security while having desire to always learn and improve this job is for you!

What you'll get to do

  • Analyze vulnerability data/Identifying trends to perform root-cause analysis
  • Assist in development of new security standards and baselines
  • Perform vulnerability assessments and act as a point of contact for engineering teams to drive remediation of security concerns and active incidents.
  • Respond to emerging security events and threats
  • Triage vulnerabilities to provide company specific severity guidance
  • Ensure remediation team compliance to regulatory standards
  • Lead security discussions, vulnerability assessments, propose and discuss solutions to security tools that are directly related to their area of focus with the assistance of senior staff as needed.

Must-have Qualifications

  • 5+ years of experience in a vulnerability management engineer (or related information security role) capacity with a Bachelor's degree in computer science, information systems, or related degree
  • Must have experience with vulnerability management or assessments and security concepts
  • Proven proficiency with vulnerability scanning and management platforms such as Tenable, Qualys, Rapid7, or similar
  • Familiarity with external configuration compliance standards such as CIS Benchmarks and DISA STIGs
  • Experience with risk-based vulnerability management, configuration compliance, including threat modeling, CVSS scoring, and prioritization methodologies
  • In depth knowledge on the best remediation techniques for different vulnerabilities and the ability to explain them to engineering teams.
  • Analytical and problem-solving skills, with an ability to balance security needs with business impact
  • Knowledge of common security threats, such as attack-techniques, evasive techniques, and preventative & defensive methods.
  • Understanding of security features in Container and Container Orchestration technologies (Docker, Kubernetes, etc).
  • Knowledge of cloud operational models and secure SaaS architecture in a world of containerized microservices.
  • Experience addressing systemic security issues through root cause analysis

Nice-to-have Qualifications

We’ve taken special care to separate the must-have qualifications from the nice-to-haves. “Nice-to-have” means just that: Nice. To. Have. So, don’t worry if you can’t check off every box. We’re not hiring a list of bullet points–we’re interested in the whole you.
  • Functional in using Splunk Search Processing Language (SPL)
  • Familiarity of compliance requirements for certifications like PCI DSS, SOC2, HIPAA, etc.

Splunk is an Equal Opportunity Employer

Splunk, a Cisco company, is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

Note:

Apply Now
Explore open roles >

Splunk's Hiring Practices

Splunk turns machine data into answers. Organizations use market-leading Splunk solutions with machine learning to solve their toughest IT, Internet of Things and security challenges.

We value diversity, equity, and inclusion at Splunk and are committed to equal employment opportunity. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. Click here to review the US Department of Labor’s EEO is The Law notice. Please click here to review Splunk’s Affirmative Action Policy Statement. If you need assistance or an accommodation to apply or during the hiring process, please let us know by completing our Accommodation Request form.

Splunk also has policies in place to protect the personal information candidates disclose to us as part of the application process. Please click here to review Splunk’s Career Site Privacy Policy.

Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.

Splunk is committed to the health and safety of our employees and customers. Splunk is impacted by the mandates outlined for U.S. Government contractors in President Biden’s Path out of the Pandemic: COVID-19 Action Plan. As a result, Splunk requires U.S. employees, whether assigned to an office or 100% remote, to provide proof of full vaccination, as defined by the CDC. Splunk provides reasonable accommodations for employees who have qualifying medical or religious reasons.

Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to accessiblecareers@splunk.com. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.

Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.

To check on your application click here.

DIVE DEEPER

Find out what makes Splunk such a great place to work
box1 box1
Our Values

Splunkers are encouraged and empowered to be Innovative, passionate, disruptive, open and fun.

Learn More
box2 box2
Benefits and Wellbeing

Our benefits are designed to support your physical, financial, emotional and mental wellbeing.

Explore Splunk Benefits
box3 box3
Early Talent Program

Intern with people you want to hang out with, even outside the office.

Learn More
box3 box3

Our Blog

Hear from Splunkers on the latest.

Read the Blog
box2 box2
Diversity, Equity, Inclusion & Belonging

Learn about Splunk’s commitment to creating a culture of belonging.

See Our Approach
box1 box1
LinkedIn

Follow Splunk on LinkedIn for job announcements, company news and more.

Follow Us
CONTACT SPLUNK
CONTACT SPLUNK
USER REVIEWS
USER REVIEWS
SPLUNK MOBILE
Download Splunk Mobile on the apple app store
Download Splunk Mobile on the Google Play store
Legal
Privacy
Sitemap
Cookies / Do not sell or share my personal data
Website Terms of Use

© 2005 - 2025 Splunk LLC All rights reserved.