The Senior Vulnerability Management Engineer oversees security tooling, maturity programs, secure development practices, and collaboration with cross-functional teams to enhance security posture.
Company Summary
EchoStar is reimagining the future of connectivity. Our business reach spans satellite television service, live-streaming and on-demand programming, smart home installation services, mobile plans and products.
Today, our brands include Boost Mobile, DISH TV, Gen Mobile, Hughes and Sling TV.
Department Summary
Our Technology teams challenge the status quo and reimagine capabilities across industries. Whether through research and development, technology innovation or solution engineering, our team members play a vital role in connecting consumers with the products and platforms of tomorrow.
Job Duties and Responsibilities
Candidates must be willing to participate in at least one in-person interview, which may include a live whiteboarding or technical assessment session.
Key Responsibilities:
Skills, Experience and Requirements
Education and Experience:
Skills and Qualifications:
Salary Ranges
Compensation: $96,250.00/Year - $137,500.00/Year
Benefits
We offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan; all benefits can be viewed here: DISH Benefits .
The base pay range shown is a guideline. Individual total compensation will vary based on factors such as qualifications, skill level, and competencies; compensation is based on the role's location and is subject to change based on work location.
Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check. Our company is committed to fostering an inclusive and equitable workplace where every individual has the opportunity to succeed. We are dedicated to providing individuals with criminal or arrest records a fair chance of employment in accordance with local, state, and federal laws.
The posting will be active for a minimum of 3 days. The active posting will continue to extend by 3 days until the position is filled.
EchoStar is reimagining the future of connectivity. Our business reach spans satellite television service, live-streaming and on-demand programming, smart home installation services, mobile plans and products.
Today, our brands include Boost Mobile, DISH TV, Gen Mobile, Hughes and Sling TV.
Department Summary
Our Technology teams challenge the status quo and reimagine capabilities across industries. Whether through research and development, technology innovation or solution engineering, our team members play a vital role in connecting consumers with the products and platforms of tomorrow.
Job Duties and Responsibilities
Candidates must be willing to participate in at least one in-person interview, which may include a live whiteboarding or technical assessment session.
Key Responsibilities:
- Architect, implement, and manage automated security tooling (e.g., SAST, DAST, IaC, container scanning, AI Security) across the SDLC, integrating with developer environments, CI/CD pipelines, and production systems
- Lead and mature a comprehensive vulnerability management program, overseeing scanning, risk assessment, reporting, and remediation across applications, infrastructure, and third-party dependencies
- Partner with engineering and product teams to embed secure development practices from design through deployment, providing expert guidance and integration support
- Establish and refine vulnerability tracking and reporting processes, enabling rapid awareness, prioritization, and resolution of security issues through coordinated efforts across teams
- Develop security policies and guardrails as code for cloud environments (AWS, Azure, GCP), ensuring automated enforcement of secure configurations and practices
- Drive cross-functional collaboration with Dev, Ops, and InfoSec teams, providing mentorship, incident support, automation solutions, and reporting to strengthen the organization's security posture and culture
Skills, Experience and Requirements
Education and Experience:
- Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree or security certifications (CISSP, CSSLP, GCSA, CCSP) preferred
- 5+ years of experience in DevSecOps and/or Vulnerability Management, with a strong record of technical leadership and program maturity
- Deep hands-on experience with application security tools (e.g., SCA, SAST, DAST, IaC, Secrets, Container Scanning, AI Security) and integration into development workflows (e.g., Snyk, Veracode, SonarQube, Prisma)
- Proficient in asset discovery and vulnerability scanning tools (e.g., Tenable, Rapid7, Palo Alto Cortex/Prisma/XSIAM/XSOAR), including report creation and dashboarding; XQL experience a plus
- Familiar with Docker, Kubernetes, and their security implications, as well as development and project management tools like Jira, Confluence, and ServiceNow
Skills and Qualifications:
- Skilled in scripting and automation, with strong proficiency in Python (required) and familiarity with Bash, PowerShell, Go, and JavaScript; experienced with CI/CD pipelines and tools like Jenkins, GitLab, GitHub Actions, and Azure DevOps
- Deep expertise in cloud and application security, including AWS, Azure, GCP, Terraform, OWASP Top 10/API Top 10, and vulnerability frameworks like SANS Top 25, KEV, and EPSS
- Proven ability to lead and execute in dynamic environments, managing projects, prioritizing tasks, and driving results with minimal direction
- Excellent communicator and collaborator, able to influence stakeholders and tailor messaging for both technical and non-technical audiences
- Continuously learning and highly adaptable, with a strong security mindset, curiosity, and a commitment to knowledge sharing, documentation, and organizational success
Salary Ranges
Compensation: $96,250.00/Year - $137,500.00/Year
Benefits
We offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan; all benefits can be viewed here: DISH Benefits .
The base pay range shown is a guideline. Individual total compensation will vary based on factors such as qualifications, skill level, and competencies; compensation is based on the role's location and is subject to change based on work location.
Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check. Our company is committed to fostering an inclusive and equitable workplace where every individual has the opportunity to succeed. We are dedicated to providing individuals with criminal or arrest records a fair chance of employment in accordance with local, state, and federal laws.
The posting will be active for a minimum of 3 days. The active posting will continue to extend by 3 days until the position is filled.
Top Skills
AWS
Azure
Azure Devops
Bash
GCP
Github Actions
Gitlab
Go
JavaScript
Jenkins
Palo Alto Cortex
Powershell
Prisma
Python
Rapid7
Snyk
Sonarqube
Tenable
Terraform
Veracode
Similar Jobs at EchoStar
Aerospace • Cloud • Digital Media • Information Technology • Mobile • News + Entertainment • Retail
Design and implement AWS Connect solutions, configure instances, develop Lambda functions, and manage API Gateway for customer experience optimization.
Top Skills:
Aws ConnectCloudFormationCloudwatchDynamoDBIamJavaJavaScriptLambdaPythonRestful ApisS3
Aerospace • Cloud • Digital Media • Information Technology • Mobile • News + Entertainment • Retail
Manage complex national retail growth programs, collaborating with internal teams, communicating with stakeholders, and optimizing program performance.
Aerospace • Cloud • Digital Media • Information Technology • Mobile • News + Entertainment • Retail
Lead design and development using Adobe Commerce/Magento, mentor developers, gather requirements, and ensure quality through reviews while supporting product launches.
Top Skills:
Adobe CommerceDevOpsDockerGitlabGraphQLJavaScriptJIRALaminas FrameworkMagentoPHPRestful ApisSQL
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering