Security Engineer, Vulnerability Management and Automation

JobsCloseBy Editorial Insights

Figure is seeking a Security Engineer for Vulnerability Management and Automation to join its Security and Privacy team in San Jose, CA, with five days in the office. The role designs and operates vulnerability discovery and remediation across enterprise and cloud environments, builds automation to scale risk reduction, triages and remediates issues, and helps implement security controls while guiding company-wide security practices. Requirements include 6+ years in enterprise or cloud security, experience across domains such as cloud security, zero trust, data loss prevention, and SaaS security, strong federation technologies (SAML, SCIM, OPA, OIDC), network security measures (mTLS, 802.1X, SSH, DNSSEC), multi-cloud (Azure AWS GCP), solid software engineering in C/C++ Rust Go or Python, OS hardening knowledge, and excellent communication. Salary 150k-350k base plus total comp; compensation details shared if an offer is extended. To apply, tailor your resume to show automation, vulnerability management impact with metrics, on-call and security guidance experience, and collaboration with a Security and Privacy team; emphasize fit for a robotics company.

Figure is an AI Robotics company developing a general purpose humanoid. Our humanoid robot, Figure 02, is designed for commercial tasks and the home. We are based in San Jose, CA and require 5 days/week in-office collaboration. It’s time to build.

We are looking for a Security Engineer to join the Security & Privacy team at Figure, focusing on designing, implementing, and managing vulnerability discovery and remediation across enterprise and Cloud environments.

Responsibilities

• Develop systems and tools to improve the security posture of Figure’s enterprise infrastructure, touching domains such as client platform, corporate networks, as well as SaaS infrastructure
• Build and manage automation for vulnerability management, and help Figure prioritize and address vulnerabilities across the infrastructure
• Identify, triage, and remediate vulnerabilities and misconfigurations for cloud infrastructure and Figure’s backend services
• Design and implement security controls for securing backend services and cloud infrastructure at Figure
• Review and provide security guidance company wide for infrastructure systems, account lifecycle, fleet management and automation.
• Define and contribute to the team's operational duties (e.g. security reviews, consulting, and on-call), identify areas of improvement by delegating work, improving automation, and runbooks.

Requirements

• Experience in several of the following Enterprise Security Domains: Zero Trust/Beyond Corp, Endpoint Security, Cloud Security, Data Loss Prevention, Cryptography and PKI, SaaS Security.
• Strong understanding of federated authentication/authorization technologies (e.g., SAML, SCIM, OPA, OIDC).
• Strong understanding of network security mechanisms, including mTLS, 802.1X, SSH, DNSSEC, Certificate transparency, VPN, and others
• Experience developing and deploying services in multi-cloud environments, preferably one of the following Azure, AWS or Google Cloud Platform
• Strong software engineering (beyond scripting or automation) skills in C/C++, Rust, Golang, Python or similar.
• Experience in common tools and processes of adjacent security domains, esp.  Detection and Response.
• Solid knowledge of operating system internals, and experience with several of the following areas: Identity and Access, OS Hardening (macOS, Windows, Linux, ChromeOS), SaaS Security or Assurance and Validation
• Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
• 6+ years of experience as an Enterprise/Cloud focused Security Engineer
• Excellent verbal and written communication skills, with high attention to detail

The US base salary range for this full-time position is between $150,000 - $350,000 annually.

The pay offered for this position may vary based on several individual factors, including job-related knowledge, skills, and experience. The total compensation package may also include additional components/benefits depending on the specific role. This information will be shared if an employment offer is extended.