Vulnerability Analyst
Location: Palo Alto, CA, San Jose, CA, New York City
Salary Range: $162,000 - $297,000 + Equity
_
At X, we're on a mission to revolutionize digital interaction and create the Everything App. Our platform is a space where people can connect, share ideas, and engage in meaningful conversations.
We’re looking for a talented and security-driven Vulnerability Analyst to join our team and help us bring our vision to life.
Who We Are:
The Vulnerability Management team is responsible for assessing and mitigating security risks across the X portfolio. This role will focus on vulnerability analysis and risk assessment, ensuring the organization is well-protected against emerging threats. The ideal candidate will have deep expertise in vulnerability scoring, data analysis, and automation.
What You’ll Do:
In this role, you’ll be responsible for evaluating vulnerabilities and determining their impact based on industry standards. You’ll work closely with cross-functional teams to improve security posture and integrate best practices. Your role will include:
Conducting vulnerability assessments using the CVSS standard as defined by First.org.
Understanding and implementing vector strings and vector chaining for risk evaluation.
Performing data analysis to assess security risks across the organization.
Identifying vulnerability reachability and impact to prioritize security responses.
Writing Python scripts to manage and manipulate data from sources such as CSV, Excel, JSON, and RESTful APIs.
Applying MITRE ATT&CK framework for attack path analysis.
Creating data reporting solutions, including simple dashboards.
Engaging with stakeholders across the organization to ensure security buy-in.
Demonstrating strong critical analysis, problem-solving, and security expertise.
Who You Are:
You are a highly skilled Vulnerability Analyst with deep expertise in vulnerability assessment, data management, and security frameworks. You have strong analytical skills and a keen ability to evaluate risk. The ideal candidate will also have:
Mastery of CVSS and its environmental processing.
Expertise in Python for security data manipulation.
Strong understanding of vulnerability impact, risk assessment, and mitigation strategies.
Proficiency with MITRE ATT&CK framework for security analysis.
Experience creating dashboard-based reports to communicate security findings.
Excellent communication and stakeholder management skills.
Nice to Have:
Experience with Elastic/OpenSearch.
Familiarity with Kibana/Grafana dashboarding.
Development of security automation playbooks.
At X, our small but fast-paced team values innovation and creativity. You'll have the opportunity to make a significant impact on the future of X and our aspiration to build the Everything App. If you thrive in a dynamic, high-growth tech environment and relish the opportunity to collaborate with passionate, driven over-achievers, your career with us here at X will be both exhilarating and fulfilling.
Apply now to join our team!