Cloud Vulnerability Management Engineer

Cloud VM Engineer

About Us 

Zelis is modernizing the healthcare financial experience in the United States (U.S.) across payers, providers, and healthcare consumers. We serve more than 750 payers, including the top five national health plans, regional health plans, TPAs and millions of healthcare providers and consumers across our platform of solutions. Zelis sees across the system to identify, optimize, and solve problems holistically with technology built by healthcare experts – driving real, measurable results for clients.

At Zelis, AI is woven into the fabric of how we work. Every associate is expected - and empowered - to partner with AI to challenge the status quo, accelerate innovation, and amplify their impact. This is a place for builders with a growth mindset who act with agility, embrace change, and use modern technology to shape smarter solutions, exceptional experiences, and the future of our industry for our clients, customers, and our culture.

Why We Do What We Do 

In the U.S., consumers, payers, and providers face significant challenges throughout the healthcare financial journey. Zelis helps streamline the process by offering solutions that improve transparency, efficiency, and communication among all parties involved. By addressing the obstacles that patients face in accessing care, navigating the intricacies of insurance claims, and the logistical challenges healthcare providers encounter with processing payments, Zelis aims to create a more seamless and effective healthcare financial system.

Zelis India plays a crucial role in this mission by supporting various initiatives that enhance the healthcare financial experience. The local team contributes to the development and implementation of innovative solutions, ensuring that technology and processes are optimized for efficiency and effectiveness. Beyond operational expertise, Zelis India cultivates a collaborative work culture, leadership development, and global exposure, creating a dynamic environment for professional growth. With hybrid work flexibility, comprehensive healthcare benefits, financial wellness programs, and cultural celebrations, we foster a holistic workplace experience. Additionally, the team plays a vital role in maintaining high standards of service delivery and contributes to Zelis’ award-winning culture. 

Position Overview

Vulnerability Management Engineer (Cloud / Wiz-Focused)
Hands-On Role | Cloud-First Environment
This Is a Builder Role — Not a Governance Role
Zelis is looking for a technically minded, execution-focused engineer to run and continuously improve our cloud vulnerability management operations using Wiz, ensuring a cohesive risk-based approach in a disparate environment.
Your responsibilities will be both technical and personal - tuning detections, automating workflows, partnering with engineers to fix real issues, and driving measurable risk reduction across AWS, Azure, and container environments.

What You’ll Be Doing Day to Day

Cloud Vulnerability Management

• Administer and tune Wiz to align with cloud-first deployment in AWS and Azure.

• Investigate findings, validate exploitability, and reduce false positives.

• Ensure accurate attribution for virtual machines and application-based workloads for remediation assignment

• Build custom queries and dashboards to surface actionable risk.

• Use Security Graph to trace attack paths and identify high-impact toxic combinations.

• Deploy integrations with CMDB, SIEM, and UVM platforms.

Cloud Workloads

• Prioritize and guide remediation efforts of vulnerabilities in:

  • EC2 / VM workloads

  • Container images and autoscaling containerized clusters, e.g. EKS, Karpenter

  • Serverless functions, e.g. Lambda

  • Cloud access controls, firewalls, load balancers and exposed services

• Validate internet attack surface exposure and lateral movement risk.

• Partner directly with DevOps and platform engineers to remediate findings.

Remediation Execution

• Partner with business stakeholders and technical teams to prioritize and plan remediation.

• Provide concise analysis on specific vulnerabilities to determine risk aligned to organizational needs and deployment patterns.

• Track SLA adherence and follow through on findings with the highest risk profiles.

• Create clear, technically accurate remediation steps based on research and analysis

• Support patch cycles and emergency remediation efforts.

• Help teams understand root cause and prevent repeat issues.

Automation

• Use APIs to automate reporting and data extraction.

• Streamline ticket creation and closure validation

• Build lightweight scripts to correlate vulnerability data with asset inventory.

• Continuously improve the signal-to-noise ratio.

Reporting

• Develop relevant key risk indicators and measurements for success

• Work with executive leadership and business unit stakeholders to develop meaningful metrics that tell the story of real organizational risk

• Take a data-driven approach, adjusting remediation priority based on context from the environment

• Partner with business intelligence and data engineering teams to create workflows for metrics and actionable insights

What Makes You Strong in This Role

• You’ve administered Wiz in a production environment.

• You understand how cloud misconfigurations amplify vulnerability risk.

• You can research a vulnerability determine its specific risk to the organization

• You’re comfortable digging into container-based, serverless, and autoscaling workloads

• You can speak the language of engineers and not sound like an auditor.

• You are comfortable with understanding and leveraging REST and GraphQL API endpoints regardless of the tool.

What You Bring

• 3–7 years in vulnerability management, cloud security, or security engineering.

• Hands-on experience with:

  • Wiz

  • AWS and/or Azure

  • Container security

• Experience with traditional VM tools (Tenable, Qualys, Rapid7) is a plus.

• Basic scripting ability (Python, PowerShell, Bash).

• Strong troubleshooting and investigative skills.

What You Won’t Be Doing

• Writing 40-page policy documents.

• Acting as a compliance checkbox owner.

• Sending generic vulnerability reports with no context.

What Success Looks Like

• Critical cloud vulnerabilities are prioritized by real-world risk, not just CVSS.

• Engineers trust security findings because they’re accurate and actionable.

• Internet-exposed attack paths are reduced quarter over quarter.

• Manual reporting effort drops because automation replaces it.

If you enjoy digging into cloud assets, understanding how attackers chain weaknesses together, and driving hands-on remediation — this role gives you room to operate.

Commitment to Diversity, Equity, Inclusion, and Belonging

At Zelis, we champion diversity, equity, inclusion, and belonging in all aspects of our operations. We embrace the power of diversity and create an environment where people can bring their authentic and best selves to work. We know that a sense of belonging is key not only to your success at Zelis, but also to your ability to bring your best each day.

Equal Employment Opportunity

Zelis is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Accessibility Support

We are dedicated to ensuring our application process is accessible to all candidates. If you are a qualified individual with a disability and require reasonable accommodation with any part of the application and/or interview process, please email talentacquisition@zelis.com.