Armis · 1 month ago
VMDR Expert (Vulnerability Management, Detection & Response)
Arlington
Full-time
Hybrid
Senior Level
$157K/yr - $200K/yr
6+ years expArmis is the cyber exposure management & security company, dedicated to protecting critical assets and managing cyber risk exposure. The VMDR Expert will be responsible for designing, automating, and improving vulnerability management and detection capabilities, collaborating with various teams to ensure effective identification and remediation of vulnerabilities.
ComplianceCyber SecurityInformation TechnologyInternet of ThingsNetwork SecurityRisk Management
Responsibilities
Lead and evolve Armis’ Vulnerability Management, Detection, and Response (VMDR) program across hybrid environments (cloud, SaaS, on-prem)
Operate and optimize vulnerability detection tools (e.g., Tenable, Qualys, Rapid7, Wiz, Prisma Cloud, ServiceNow VR)
Integrate vulnerability data with threat intelligence and detection pipelines for risk-based prioritization
Develop automated playbooks for vulnerability validation, alert correlation, and remediation tracking using Python, PowerShell, or REST APIs
Correlate vulnerability data with real-time detections (SIEM/SOAR) to improve exploitability insights
Create dashboards and KPIs for exposure trends, SLA adherence, and MTTR metrics in Splunk, Power BI, or Elastic
Partner with Security Engineering, CloudOps, and Product teams to ensure secure configuration and timely patching
Support incident response investigations where vulnerabilities are exploited or suspected
Maintain compliance alignment for ISO 27001, SOC 2, and FedRAMP control mappings
Author VMDR runbooks, response SOPs, and executive risk reports summarizing key exposures and trends
Participate in threat-hunting and red/blue team activities to validate vulnerability detection coverage
Qualification
Required
6–10+ years of experience in Vulnerability Management, Threat Detection, or Security Engineering
Advanced knowledge of CVSS, EPSS, CISA KEV, CWE/CVE frameworks and scoring methodologies
Hands-on experience with enterprise-grade scanning, detection, and response tools (Tenable, Rapid7, Wiz, Prisma Cloud, ServiceNow VR)
Experience building automation pipelines or integrations via API (Python, PowerShell, Bash, JSON)
Familiarity with risk-based vulnerability management (RBVM) concepts and reporting models
Understanding of cloud security (AWS, GCP, Azure) and container environments (Docker, Kubernetes)
Proven ability to collaborate across DevOps, Threat Intel, and Incident Response teams
Bachelor's degree in Computer Science, Cybersecurity, or related field
Preferred
Prior experience in a SaaS or cybersecurity platform company
Familiarity with Armis Centrix™, asset intelligence, or attack surface management tools
Experience building or managing ServiceNow VR modules or similar vulnerability tracking workflows
Certifications such as CISSP, GCCC, CEH, CySA+, or GIAC GVP
Experience integrating vulnerability and detection telemetry into SIEM/SOAR workflows
Benefits
Bonuses
Commissions
Stocks
Health insurance benefits
Company
Armis
Armis is a cyber exposure management and security company that protects the entire attack surface and detects threats in real time.
501-1000 employees
H1B Sponsorship
Armis has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2024 (2)
2022 (2)
2021 (1)
2020 (5)
Funding
Current Stage
Late StageTotal Funding
$1.27BKey Investors
Goldman Sachs Growth EquityGeorgianOne Equity Partners
2025-12-23Acquired
2025-11-05Series Unknown· $435M
2025-07-23Secondary Market· $100M
Leadership Team
Yevgeny Dibrov
Co-Founder & CEO
Nadir Izrael
Co-founder & CTO
Recent News
2026-01-07
2026-01-07
2026-01-06
Company data provided by crunchbase