Who We Are

Want to be part of a company that empowers you to innovate and implement your powerful ideas as you help shape the future of cybersecurity? Since 2012, CRITICALSTART has assisted in safeguarding numerous businesses from cyberattacks, preparing them for upcoming threats, and earning a plethora of awards along the way.

We thrive on innovation, devoid of bureaucracy. CRITICALSTART pioneered the first MOBILESOC app for on-the-go threat detection and response, devised a method to automatically resolve the majority of security alerts, and introduced services that reduce alert investigation time by 99.3% (our analysts truly appreciate us for that).

Everything we do revolves around our three core principles:

Do what’s best for our customers.

Do what’s best for our employees.

Don’t do things that suck.

That's basically it.

If you'd prefer to hear from our Critical Crew, watch this video to learn about their perspectives. Look at our Glassdoor reviews for another internal viewpoint (Pssst...want to grab our attention when you submit your resume? Include something about our Glassdoor reviews that resonated with you).

What can we offer you?

• Daily opportunities to make a difference. Whether it's protecting our customers from attacks and breaches or contributing to the greater good.
• An abundance of intelligent, talented, high-performing individuals to collaborate with. We value accountability, support each other's growth, and genuinely enjoy what we do.
• An approach of continuous improvement to revolutionize our industry and surpass mediocrity. While many cybersecurity companies hire competent individuals, we believe in striving for excellence. Don't you believe you're capable of more than just being good?
• Constant learning, unlocking innovative ideas, and a nurturing, cooperative environment.
• Extensive industry recognition. We receive so much acclaim that it's nearly overwhelming. Almost.
• Our teammate put it best: "Every day presents new challenges and ample opportunities for professional growth... Your contributions directly impact the company's overarching purpose, and the sense of belonging and culture are unparalleled.

Who You Are

We are seeking a dedicated and skilled Vulnerability Management Engineer to join our Managed Security Services team. The ideal candidate will possess expertise in Vulnerability Management operations using tools such as Qualys, Tenable, Rapid7 InsightVM, and others. Additionally, the candidate will have exposure to SIEM tools and Endpoint Detection and Response/Extended Detection and Response (EDR/XDR) integrations. As a Vulnerability Management Engineer, you will play a crucial role in delivering managed security services to our clients, ensuring our customers stay ahead of emerging security threats and compliance requirements.

What You Will Be Doing?

• Skills Maintenance: Keep your industry knowledge up-to-date by maintaining deep expertise in SIEM tools and EDR/XDR products.
• Client Interaction: Deliver our managed services to clients efficiently, working on project-based tasks related to SIEM and EDR/XDR technologies. Collaborate closely with clients to address technical issues, provide value reports, and configure their systems effectively.
• Technical Guidance: Offer technical guidance, expertise, and configuration support to clients, helping them maintain strong and efficient SIEM and Endpoint security programs.
• Best Practices: Assist clients in implementing best practices for deploying and configuring endpoint agents, endpoint security policies, log forwarders, data sources, content, and alerts.
• Security Enhancement: Assist clients in enhancing the security of their SIEM and Endpoint products, ensuring alignment with industry standards and our program offerings.
• Issue Resolution: Troubleshoot problems related to data source interactions with SIEM technologies and API connections between supported security integrations and our platform (CORR).
• Automation Opportunities: Identify chances to automate parts of SIEM and Endpoint engineering tasks to improve efficiency and accuracy.
• Documentation Management: Create and update extensive security documentation, encompassing playbooks, standard operating procedures, and training materials.
• Ongoing Education: Keep abreast of the latest security threats and trends, integrating this knowledge into our security solutions. Attain and maintain relevant security certifications.
• Collaborative Teamwork: Work closely with fellow cybersecurity engineers, product managers, and architects to devise and implement innovative security solutions that offer the highest level of protection for our clients.

What You Will Bring?

Responsibilities and Duties:

• Maintain Expertise: Stay at the forefront of the industry by maintaining in-depth expertise in Vulnerability Management trends, strategies, and development. Obtain and maintain relevant certifications.
• Client Engagement: Deliver our service offerings exceptionally to clients through project-based workflows.
• Technical Implementation: Provide expert technical guidance, configuration assistance, and hands-on expertise to clients, enabling them to maintain effective vulnerability management programs. This includes installation and deployment of sensors and agents, internal and external scan configuration, custom report creation for compliance or internal audits, and operationalizing the VM program as a whole.
• Best Practices: Assist clients in implementing best practices for deploying, installing and configuring endpoint sensors, scan scheduling, scan configuration, endpoint grouping, and value reporting.
• Security Maturation: Aid clients in maturing their Vulnerability Management program in alignment with industry standards and our program offerings by performing and configuring vulnerability scans, conducting regular reviews of environments to identify vulnerabilities, and providing solution recommendations through effective communication of vulnerability risk and prioritization.
• Problem Resolution: Troubleshoot interactions between data sources and Vulnerability Management technologies, as well as API interactions between supported security integrations and our platform (CORR).
• Automation: Identify opportunities to automate aspects of Vulnerability Management workload, enhancing efficiency and accuracy.
• Documentation: Develop and maintain comprehensive security documentation, including playbooks, standard operating procedures, and training materials.
• Team Collaboration: Collaborate with fellow cybersecurity engineers, product managers, and architects to design and implement innovative security solutions, ensuring the highest level of protection for our clients.
• Risk Management: Understand, manage, and articulate the balance between security risk and business operability.

Required Qualifications:

• 5 years of experience in the field of information security, with a focus on vulnerability management, secure design review, and incident response.
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent experience and industry certifications.
• Knowledge of security frameworks such as NIST, CIS, and ISO.
• Experience with vulnerability management tools such as Tenable, Qualys, Rapid7, etc.
• Strong knowledge of network security protocols, operating systems, and web application security.
• Familiarity with security incident and event management (SIEM) tools.
• Excellent communication and interpersonal skills, with the ability to convey complex security issues to both technical and non-technical stakeholders.
• Strong collaboration skills, including the ability to work seamlessly with cross-functional teams.
• Proven ability to work independently, manage multiple tasks, and prioritize work effectively.
• Experience in working in a Managed Services, Consulting, or MSSP environment is a plus.
• Experience working with APIs using tools such as Swagger and Postman.
• Scripting capabilities in Bash, PowerShell, Python, or other programming/scripting languages.
• Ability to build rapport and trust with customers, even when discussing complex technical issues.
• Adept at troubleshooting technical issues as they relate to security products.

What It's Like Working Here

Imagine a dynamic, enjoyable, and rewarding work environment. We are professionals, and the work we do holds immense significance, like saving our customers from potential disasters. However, we believe in not taking ourselves too seriously. 

Prefer a casual dress code every day? No problem, as we find comfort enhances our thinking. 

Depending on the role, you may work in the office, virtually, or adopt a hybrid work model. Our workplace in Plano, TX offers open offices, collaborative meeting spaces, phone rooms, and wellness rooms. In the breakroom, friendly competition arises with games like ping-pong, bubble hockey machine, foosball, or the gaming machine. What harm does a little healthy competition among friends do? 

What does our Compensation and Benefits package entail? 

• Competitive salary with bonus potential 
• 100% employee coverage for healthcare/50% coverage for dependents 
• Unlimited PTO (Paid Time Off) policy 
• Paid Parental and Military Leave 
• Dental and Vision Plan 
• Employer-provided Life Insurance, Long-Term Disability, and Short-Term Disability coverage 
• Additional Voluntary Life Insurance coverage 
• 401(k) Plan with Matching Program 
• 24/7/365 availability of Employee Assistance Program 
• Teladoc Mental Health Benefits 
• Optional Pet Benefits Discount Plan 
• And a new Tesla... just kidding! Kudos for making it to the end. 

Critical Start welcomes people from all backgrounds and walks of life. One of our core values is to “Do what’s best for our employees,” and that starts with the hiring process by finding the best candidates and providing an environment that upholds equal employment opportunities for all employees and applicants, strictly prohibiting any form of discrimination or harassment based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. 

This policy encompasses all aspects of employment, including recruitment, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. 

Mental and Physical Requirements 

It's important to note that specific physical and mental requirements may vary depending on the nature of the office job, organization, and individual responsibilities. 

Physical:  

• Stationary position for extended periods of time. 
• Constantly operate a computer.
• Occasionally you may be required to move equipment or other items up to 20 lbs. 
• The ability to communicate information and ideas so others will understand. Must be able to exchange accurate information in these situations. 

Mental:  

• Must be able to apply established protocols in a timely manner. 
• Make timely decisions in the context of workflow. 
• Ability to complete tasks and perform in situations requiring speed deadlines, or productivity quota. 
• Ability to work effectively and efficiently in high stress situations. 
• Ability to simultaneously address multiple complex problems. 

For positions that can or will be performed, in whole or in part, virtually within the U.S., range and benefits information for this position are being included in accordance with requirements of various state/local pay transparency legislation. Please note that salaries may vary for different individuals in the same role based on several factors, including but not limited to location of the role, individual competencies, education/professional certifications, experience, performance in the role and potential for revenue generation (sales roles only).

Compensation:

The total compensation range (base) being offered for this role is [$110,000-$125,000].

Additional Compensation:

This role is not eligible for bonus compensation.

Employment Benefits:

100% employee coverage for healthcare/50% coverage for dependents, unlimited PTO (Paid Time Off) policy, paid Parental and Military Leave, dental and vision plan, Employer-provided Life Insurance (up to $100K coverage), Long-Term Disability, and Short-Term Disability coverage, 401(k) Plan with Matching Program, 24/7/365 availability of Employee Assistance Program.

Application Deadline:

The application deadline for this position is May 31, 2024.

How to Apply:

Interested candidates are invited to visit our career site and apply for the position: https://www.criticalstart.com/careers/

#LI-remote

#LI-CV1