Senior Security Engineer, Vulnerability Management

The Role

We are seeking a highly skilled and experienced Senior Security Engineer to join our dynamic team. The ideal candidate will have extensive experience in vulnerability management, patch management, and incident response. This role involves driving and executing vulnerability management processes, ensuring the security posture of enterprise assets, and supporting the incident response team. If you are passionate about cybersecurity and have a proactive approach to security, we would love to hear from you.

Here's What You'll Do

• Develop and implement a comprehensive vulnerability management program.
• Conduct regular vulnerability assessments and penetration testing to identify security weaknesses.
• Continuously monitor and assess publicly disclosed vulnerabilities to determine their potential impact on enterprise assets.
• Provide detailed analysis and reports on identified vulnerabilities specific to Moderna’s systems, assets, and environments, including risk assessments, mitigation recommendations, and remediation timelines.
• Stay up-to-date with the latest security threats, trends, and technologies to ensure the organization’s security measures are current and effective, working closely with our Threat Intelligence team.
• Prioritize and coordinate remediation efforts of identified vulnerabilities across multi-functional engineering and manufacturing partners.
• Develop and maintain metrics to measure the effectiveness of the vulnerability management program.
• Perform security assessments of applications, systems, and networks to ensure compliance with security policies and standards.
• Collaborate with development and infrastructure teams to integrate vulnerability management into the software development lifecycle (SDLC).
• Act as a key member of the incident response team to investigate and mitigate security incidents.
• Provide expertise and guidance during security incidents to ensure timely and effective resolution.
• Develop, review, and update security policies, procedures, and standards to enhance the security posture of the organization.
• Ensure compliance with relevant regulations and industry standards.
• Provide leadership and mentorship to junior security engineers and other IT staff.
• Work closely with cross-functional teams, including IT, development, and operations, to ensure alignment on security initiatives.
• Communicate effectively with executive leadership and other stakeholders regarding security risks and mitigation strategies.

Here’s What You’ll Need

• 6+ years of experience in information security, with a focus on vulnerability management.
• Strong knowledge of vulnerability management tools (e.g., Qualys, Nessus, Rapid7) and techniques.
• Experience with security assessment methodologies and penetration testing tools.
• In-depth understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS).
• Proven experience in incident response and handling security incidents.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly desirable.

Here’s What You’ll Bring to the Table

• Experience with cloud security (AWS, Azure, GCP).
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines.
• Knowledge of scripting and automation tools (e.g., Python, PowerShell).

Moderna offers personalized benefit programs and well-being resources as unique as our global workforce so employees can do their best work.

We recognize and appreciate your diverse needs and interests and do our best to support you at work and at home with:

• Quality healthcare and insurance benefits
• Lifestyle Spending Accounts to create your own pathway to well-being
• Free premium access to fitness, nutrition, and mindfulness classes
• Family planning and adoption benefits
• Generous paid time off, including vacation, bank holidays, volunteer days, sabbatical, and a discretionary year-end shutdown
• Educational resources
• Savings and investments
• Location-specific perks and extras!

The benefits offered may vary depending on the nature of your employment with Moderna and the country where you work.

About Moderna

Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world. 

By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities.

We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S.

As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute and make a meaningful impact.

If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities.

Moderna is a smoke-free, alcohol-free and drug-free work environment.

Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply!

Moderna is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

Belonging, Inclusion, and Diversity are critical to the success of our company and our impact on society. We’re focused on attracting, retaining, developing, and advancing our employees and believe that by cultivating diverse experiences, backgrounds, and ideas, we can provide an environment where every employee is able to contribute their best.

Moderna is committed to offering reasonable accommodations or adjustments to qualified job applicants with disabilities. Any applicant requiring an accommodation or adjustment in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should

contact the Accommodations and Adjustments team at leavesandaccommodations@modernatx.com.

-