Role Overview

In this role, you will be responsible for developing, operating, and executing a robust Vulnerability Management program to ensure continuous identification and remediation of vulnerabilities across our technology ecosystem.

Responsibilities

• Lead and manage vulnerability identification, assessment, prioritization, and remediation efforts.
• Utilize tools such as Prisma, Rapid7, and Defender daily to monitor and address vulnerabilities.
• Operate and manage vulnerability scanning tools, platforms, and cloud-native capabilities.
• Collaborate with IT, network operations, application development, and compliance teams to address vulnerabilities promptly.
• Provide expert guidance for implementing security patches, configurations, and mitigation strategies.
• Conduct regular vulnerability assessments and recommend actionable remediation steps.
• Analyze security advisories, threat intelligence, and vulnerability feeds to stay updated on emerging threats.
• Maintain and update vulnerability management policies, procedures, and documentation in line with industry best practices.
• Present reports on vulnerability metrics, trends, and remediation progress to senior management.
• Lead incident response efforts in cases of detected vulnerabilities or potential exploits.

Requirements

• Bachelor's or Master's degree in Computer Science, Information Technology, or a related field.
• 3+ years of hands-on experience in Security Engineering, focusing on vulnerability management.
• Proficiency with vulnerability scanning tools such as Prisma, Rapid7, Defender, Contrast, AWS Inspector, or Wiz.
• Strong understanding of vulnerability management frameworks, tools, and best practices.
• Excellent analytical and problem-solving abilities, with the capability to prioritize and manage multiple tasks effectively.
• Effective communication and interpersonal skills.
• Fluent English skills (written and spoken) at a B2 level or higher.

Nice to Have

• Industry-recognized cybersecurity certifications such as CISSP, CISM, CEH, or GIAC.
• Familiarity with cloud security frameworks and modern DevSecOps practices.

We Offer

• International projects with top brands.
• Work with global teams of highly skilled, diverse peers.
• Healthcare benefits.
• Employee financial programs.
• Paid time off and sick leave.
• Upskilling, reskilling and certification courses.
• Unlimited access to LinkedIn Learning library.
• Global career opportunities.
• Volunteer and community involvement opportunities.
• Award-winning culture recognized by Glassdoor, Newsweek, and LinkedIn.