Senior Engineering Manager, RVBM

Senior Engineering Manager, RVBM Get to Know Us Horizon3.ai http://Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to the mission of enabling organizations to proactively find, fix and verify exploitable attack vectors before criminals exploit them. Our flagship product, the NodeZeroTM platform, delivers production-safe autonomous pentests and other key assessment operations that scale across the largest internal, external, cloud, and hybrid cloud environments. NodeZero has been adopted by organizations of all sizes, from small educational institutions to government agencies and Global 100 enterprises. It is used by IT Ops/SecOps teams, consulting pentesters, and MSSPs and MSPs. We are a fusion of former U.S. Special Operations cyber operators, startup engineers & operators, and formerly frustrated cybersecurity practitioners. We're committed to helping solve our common security problems: ineffective security tools and false positives, resulting in alert fatigue, blind spots, "checkbox” security culture, cybersecurity skills shortage, and the long lead time and expense of hiring outside consultants. Collectively, we are a team of learn-it-alls, committed to a culture of respect, collaboration, ownership, and results. As a remote first company, we require minimum 25Mbps consumer grade broadband connection. What You'll Do We’re looking for a Senior Engineering Manager to lead our Risk-Based Vulnerability Management (RBVM) organization — the set of teams that transform NodeZero’s offensive findings and external scanner data into a unified, attacker-validated view of risk. This role requires a customer obsessed engineering manager and will have significant product ownership. You’ll own and scale the engineering teams behind NodeZero’s RBVM capabilities, including: - Vulnerability Management Hub (VMH) – centralizing exploitable weaknesses, attack paths, and fix verification into a single operational view. - Vulnerability Risk Intelligence (VRI) – ingesting data from scanners like Tenable/Qualys/Rapid7 and re-ranking based on exploitability, threat actor pressure, and business impact. - High-Value Targeting (HVT), Advanced Data Pilfering (ADP), and Threat Actor Intelligence (TAI) – capabilities that reason about “crown jewel” systems, sensitive data, and active adversaries to drive true risk-based prioritization. - Integrations & FixOps – pushing NodeZero outputs into systems like ServiceNow and Jira, and closing the Find–Fix–Verify loop for customers. You’ll build and lead an organization that helps customers move from vulnerability lists to FixOps: fixing what matters most, and proving it. What You’ll Bring - Leadership & Product Ownership - Proven experience leading multiple backend/platform teams or an engineering org in a SaaS, cybersecurity, or cloud-scale environment. - Track record of taking products from concept to market — including POCs, MVPs, launches, and iterative improvements — in partnership with Product and GTM. - Comfort operating in an environment with limited dedicated PM capacity, including helping define direction, shaping roadmaps, and setting technical priorities. - Demonstrated ability to manage concurrent initiatives and balance short-term delivery with longer-term platform and product investments. - RBVM / Security Domain Exposure - Familiarity with vulnerability management concepts, including vulnerability scanners (e.g., Tenable, Qualys, Rapid7), CVEs/CVSS, and the difference between “vulnerable” and “exploitable.” - Experience or strong interest in risk-based approaches that combine exploitability, threat actor behavior, and business impact. - Comfort collaborating with offensive security, detection/defense, or security operations teams. - Technical Depth - Highly technical background with expertise in software development and B2B SaaS multi-product platforms. - Deep understanding of scalable backend architecture, data modeling, databases, and distributed s ... (truncated, view full listing at source)