Job Type: Contract
Contract Length: 1.5 months
Pay Range: $60-70/hr
Start Date: June 8th, 2026
Location: Remote\
About the Opportunity:
Our client, a leader in Enterprise Software and Hybrid-Cloud solutions, is looking for a skilled Security Communications Lead to join their team for a 1.5 months engagement. This project involves acting as the authoritative voice of Product Security, bridging the gap between deep-tier engineering findings and customer-facing transparency. The mission is to protect the customer and brand by ensuring that complex vulnerabilities are analyzed, documented, and disclosed with the highest degree of integrity. This is a high-impact role that requires a self-motivated professional who can hit the ground running and deliver results quickly.
Key Responsibilities & Deliverables:
This role is focused on the successful completion of specific tasks and deliverables. Your responsibilities will include:
- Strategic Disclosure: Lead the end-to-end lifecycle of Security Advisories, KB articles, and technical documentation, ensuring every publication meets the highest standard for clarity and integrity.
- CNA Partnership: Support the CNA (CVE Numbering Authority) process and CVE registrations, partnering directly with Security Engineers to validate the technical scope and impact of findings before publication.
- Technical Synthesis: Distill technical data and root-cause analysis to create authoritative content that helps customers understand risk and prioritize remediation.
- Cross-Functional Stewardship: Collaborate with Legal, Support, and PR to ensure all security messaging is precise, accurate, and aligned with our commitment to transparency.
- Program Evolution: Standardize incident briefing templates and communication playbooks to support a maturing, global security organization.
We are looking for someone with a proven track record of successful contract engagements. The ideal candidate will have:
- The “Security Eye”: A strong technical foundation in the security landscape. You understand the “how” behind vulnerabilities (OWASP Top 10, common exploit chains) and the “why” behind risk scoring (CVSS).
- Analytical Communicator: A talent for taking deep-tier engineering data and turning it into clear, authoritative, and helpful guidance for both technical and non-technical audiences.
- Collaboration First: A passion for partnering with security engineers, comfortable engaging in deep-dive technical discussions to ensure disclosures are 100% accurate.
- 7+ years in a technical role, such as Security Engineering, PSIRT operations, or high-level Technical Communications.
- Detail-Oriented Mindset: A commitment to precision and a track record of prioritizing accuracy and customer safety.
- Demonstrated ability to work autonomously and manage your own time effectively to meet project goals.
- Experience managing the CNA (CVE Numbering Authority) process or working with MITRE/FIRST standards.
- Familiarity with modern disclosure formats like VEX or CSAF.
- Experience in a global, distributed environment where quality and scale are equally prioritized.
- The ability to interpret a code snippet or an architectural diagram to understand the potential impact of a bug.
- W2 only (No C2C or 1099 contractors)
#LI-SB1
