[Remote] Security Engineer II - Cloud & Vulnerability Management
Note: The job is a remote job and is open to candidates in USA. Nasuni is a company focused on information security, and they are seeking a Security Engineer II - Cloud & Vulnerability Management. This role is responsible for managing and operating tools and workflows to protect their hybrid and multi-cloud infrastructure, with an emphasis on vulnerability management and asset visibility.ResponsibilitiesOwn day-to-day execution of Nasuni's vulnerability management processes and tooling across cloud infrastructure (Wiz), on-premises and network assets (Rapid7), while contributing to ongoing program improvementsSupport the maintenance of a current, accurate asset inventory across cloud workloads, physical infrastructure, network devices, and employee endpointsManage the full vulnerability lifecycle, including identification, triage, prioritization, remediation coordination, and validationPartner with Engineering, SRE, and IT/Infrastructure teams to drive remediation activitiesProduce clear, actionable vulnerability reporting for Engineering and IT/Infrastructure stakeholders and security leadershipTrack remediation SLAs, identify patterns in recurring weaknesses, and recommend systemic improvements to reduce exposureContribute to patch management coordination efforts and support secure configuration baseline reviews across key asset classesMaintain visibility and inventory accuracy across cloud, endpoint, network, and infrastructure assets in partnership with IT/Infrastructure teamsMonitor cloud security posture via Wiz across AWS, Azure, and GCP environments β identifying misconfigurations, high-risk exposures, and policy violationsSupport secure configuration of cloud workloads, network controls, IAM, and infrastructure components in collaboration with engineering and SRE teamsIdentify and escalate configuration drift, excessive permissions, and security gaps in cloud infrastructureProvide security input on infrastructure changes and support security reviews as neededSupport security incidents where infrastructure, asset, or vulnerability context is neededIndependently manage and investigate moderate-severity security incidents within your domain; conduct root cause analysis and contribute to post-incident reviewsMaintain and improve documentation and runbooks for asset, vulnerability, and endpoint-related incident response proceduresSupport additional incident response efforts as neededSupport internal and external evidence collection and control documentation for within your areas of ownershipMaintain accurate records of scanning activity, remediation outcomes, and asset coverage for audit readinessContribute to security awareness initiatives and help communicate security expectations around patch and configuration hygiene to engineering teamsShare knowledge and support team development through collaboration and peer guidanceIdentify operational gaps and recommend practical improvements to strengthen security posture and program effectivenessLeverage AI-assisted tools to improve security analysis, vulnerability triage, reporting, and operational workflows while validating outputs and maintaining accountability for decisionsSkills3β6 years of experience in security engineering, cloud security, vulnerability management, or a closely related roleHands-on experience managing vulnerability scanning or asset management programs in a cloud or hybrid environmentExperience coordinating remediation efforts across Engineering, Infrastructure and/or IT teamsExperience prioritizing vulnerabilities using risk-based methodologies and business contextExperience using AI-enabled tools to improve operational efficiency, analysis, investigation, or reporting while applying appropriate validation and security controlsExperience with cloud security platforms, ideally including Wiz or a comparable CSPM tool; familiarity with AWS, Azure, or GCP security fundamentalsHands-on experience with vulnerability management tools such as Rapid7 InsightVM, Qualys, Tenable, or equivalentWorking knowledge of network protocols, network security fundamentals, and infrastructure security concepts (TCP/IP, firewall logic, segmentation)Familiarity with secure configuration standards such as CIS Benchmarks and common vulnerability frameworks (CVSS, CVE)Strong written and verbal communication skills. Able to translate vulnerability findings into clear, prioritized guidance for cross-functional partnersOwnership mindset: you follow through on commitments, track your own work, and raise blockers earlyCollaborative and reliable partner across engineering, IT/infrastructure, and security teamsBachelor's degree in Information Security, Computer Science, or a related field; or equivalent practical experienceCertifications preferred: CompTIA Security+, AWS Security Specialty, CySA+, or equivalentBenefitsBest in class employee onboarding and training"Take What You Needβ paid time off policyComprehensive health, dental and vision plansCompany-paid life and disability insurance401(k) and Roth IRA retirement planGenerous employee referral bonusesFlexible remote work policy10 Paid HolidaysWide array of wellbeing offeringsPre-tax savings accounts with company contributionsGreat team culture and social activitiesCollaborative workspacesFree on-site fitness centers and stocked kitchens in select office locationsProfessional development resourcesCompany OverviewNasuni is a cloud storage company that provides hybrid cloud-based storage and file-sharing platforms to manage file growth. It was founded in 2009, and is headquartered in Boston, Massachusetts, USA, with a workforce of 501-1000 employees. Its website is https://www.nasuni.com.Company H1B SponsorshipNasuni has a track record of offering H1B sponsorships, with 7 in 2025, 5 in 2024, 5 in 2023, 8 in 2022, 6 in 2021, 3 in 2020. Please note that this does not guarantee sponsorship for this specific role.