Company OverviewDocusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people's lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign's Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM).What you'll doAs a Security Engineer (Vulnerability Management), you will be both a handson engineer and a trusted partner to our technical stakeholders. You'll dive into how vulnerabilities actually work, understand the technologies they affect, and provide clear, authoritative guidance to engineering, SRE, and platform teams on risk, impact, and remediation options.You will operate and tune vulnerability management tooling (including platforms such as Wiz, Microsoft Defender, and related scanners), validate and prioritize findings, and work closely with service owners-using systems such as ServiceNow and Jira-to drive timely remediation. Your work will translate scanner output into actionable, riskbased work that reduces exposure while allowing teams to move quickly and safely.This position is an individual contributor role reporting to the Sr Manager, Vulnerability & Configuration Management.ResponsibilityAnalyze vulnerabilities in depthInvestigate vulnerabilities from scanners, advisories, and threat intel to understand root cause, affected components, preconditions, and potential impact to Docusign services and infrastructure.Be an authoritative technical voiceExplain vulnerabilities, exploit chains, and mitigations to engineers, SREs, and architects in clear technical terms, including tradeoffs between shortterm mitigations and longterm fixesOperate and tune vulnerability tooling (handson)Configure, run, and maintain internal and external vulnerability scans (e.g., infrastructure, cloud, container) using tools such as Wiz, Microsoft Defender, and related platforms, ensuring scope accuracy, coverage, and highquality signal with minimal noiseValidate and prioritize findingsValidate key findings, identify false positives, and deduplicate results. Prioritize vulnerabilities based on severity, exploitability, asset criticality, exposure, and business contextDrive remediation with stakeholders (partnering)Partner with service, platform, and product teams to define remediation plans, align on timelines and SLAs, and ensure fixes are implemented and verified in production environmentsTranslate data into actionable workUse Jira and ServiceNow to create clear, contextual tickets that include impact, affected assets, reproduction details (when appropriate), and recommended remediation steps, and track them through closureCollaborate across security and engineeringWork closely with cloud security, infrastructure, SRE, and application teams to integrate remediation into normal engineering workflows and release cycles, avoiding unnecessary friction while still reducing riskContribute to automation and reporting (handson)Use scripts and queries to enrich vulnerability data, support bulk operations (e.g., ownership updates, tagging), and improve dashboards/metrics used to track risk, SLA performance, and remediation trendsDocument and share knowledgeContribute to runbooks, playbooks, and internal documentation that help stakeholders understand common vulnerability classes, secure configuration patterns, and bestpractice remediation approachesSupport incident and surge response
Job Title
Security Engineer