Strava · 1 day ago
Senior Vulnerability Management Engineer
San Francisco, CA
Full-time
Hybrid
Senior Level
$166K/yr - $196K/yrStrava is the app for active people, with over 150 million athletes globally. They are seeking a Senior Vulnerability Management Engineer to protect their data and enhance security practices across various domains, including vulnerability management and incident response.
AppsFitnessInternetMobileSocial NetworkSports
Responsibilities
You are passionate about securing a platform that supports millions of athletes and their data every day
Own the full lifecycle of vulnerability management—visibility, prioritization, and remediation—across a diverse tech stack
Have a high-leverage impact on Strava’s risk posture by enabling timely, efficient, and measurable patching and hardening efforts
You're excited to build automations and processes that eliminate manual toil and support continuous security improvement
Collaborate across Engineering, IT, and Security to align technical execution with real-world risk reduction
Leading efforts to identify, assess, and remediate vulnerabilities across endpoints, infrastructure, and SaaS systems
Build scalable processes and automation for vulnerability ingestion, deduplication, enrichment, and routing
Partner with Strava engineers and business teams to embed patching and configuration management into daily operations
Prioritize engineering-focused solutions over manual processes, and continuously seeking ways to reduce friction
Qualification
Required
Experience in vulnerability management, patch engineering, or endpoint hardening at scale in enterprise environments
Know how to evaluate and act on vulnerability data using context, threat intelligence, and business impact—not just CVSS
Have worked with tools like Tenable, AWS Inspector, CrowdStrike Spotlight, or similar platforms for risk identification and remediation
Have collaborated with IT, SRE, and Engineering to implement automated patching, enforce baselines, or manage exceptions responsibly
Are comfortable scripting in Python, Bash, or similar to automate and integrate remediation workflows
Are pragmatic and adaptive—able to troubleshoot blockers and move forward in ambiguous environments
Communicate clearly and proactively, fostering alignment and accountability across teams in a remote, distributed company
Be highly self-motivated and detail-oriented, with a bias for action and strong ownership of outcomes
Company
Strava
Strava is a social fitness app that tracks running, cycling, and workouts, connecting athletes.
Founded in 2009
201-500 employees
H1B Sponsorship
Strava has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (14)
2024 (5)
2023 (4)
2022 (6)
2021 (12)
2020 (1)
Funding
Current Stage
Late StageTotal Funding
$151.85MKey Investors
Sequoia CapitalJackson Square VenturesMadrone Capital Partners
2025-05-22Series Unknown
2025-05-22Debt Financing
2020-11-17Series F· $110M
Leadership Team
Michael Martin
CEO & Board Member
Rob Terrell
Chief Technology Officer
Recent News
2026-01-09
2026-01-06
Company data provided by crunchbase