We are looking for inquisitive and committed people. People looking to grow, but most importantly, to improve the surrounding environment. Are you one of them? Then this vacancy is for you!
What your day to day life will look like...
You will join the multidisciplinary cybersecurity vulnerability management team, where you will participate in the identification, evaluation and management of vulnerabilities within the software architectures and systems of the organisation. You will work on implementing approaches such as continuous risk analysis, vulnerability remediation and proactive threat management, ensuring that mitigation strategies are integrated in a transversal manner across all aspects of information systems, execution and governance.
The responsibilities in the position include:
- Identify, evaluate and manage vulnerabilities within the software architectures and systems of the organisation,
- Provide support in security reviews and analysis, identifying vulnerabilities and proposing corrective and preventive solutions.
- Offer technical leadership in vulnerability management, guiding teams in adopting best practices and policies to reduce associated risks.
- Research and evaluate new tools and solutions for vulnerability management, ensuring that protection strategies align with emerging trends and industry regulations.
Requirements
- Degree in Computer Engineering, Telecommunications, Physics, Mathematics, or equivalent fields.
- Minimum of 3–5 years of experience in security vulnerability management, assessing and mitigating risks in complex technology environments.
- Knowledge of vulnerability management methodologies, such as CVSS (Common Vulnerability Scoring System), and vulnerability scanning tools (e.g., Qualys, etc.)
- Experience in identifying and mitigating common vulnerabilities (OWASP Top 10) and in risk analysis for applications, infrastructures and networks.
- Understanding of security architectures based on microservices, REST APIs and distributed environments
- Familiarity with security regulations and standards, such as NIST, ISO 27001 and GDPR, and their application in vulnerability management.
- Proficiency in security tools and practices for static and dynamic code analysis (SAST/DAST) and penetration testing.
- Security certifications such as CISSP (Certified Information Systems Security Professional), CEH (Certified Ethical Hacker), CompTIA Security+, or similar.
- Ability to work with multidisciplinary teams, collaborating closely with development and operations teams to prioritise and resolve vulnerabilities.
- Results-oriented mindset, with strong analytical skills to prioritise vulnerabilities and proactively manage risks.
- Knowledge of agile project management methodologies and experience managing tasks.
- Effective communication skills to convey risk and the importance of vulnerability management to non-technical audiences.
- Languages: Spoken and written English.
If you are passionate about...
Grow professionally in an innovative technological environment, with challenging projects and together with major IT partners.
You deserve it
-
Your way_ Find the work-life balance you need with our hybrid working model. Up to 60% remote working depending on the project. 🤩
-
Rest_ You can have 27 days’ holiday a year with the option of choosing the best times of the year for you.
-
Be Tech, be healthy_ No more excuses. Take advantage of our Well-being programme. You can enjoy discounts in gyms, branch physio service, sporting tournaments, fruit, etc. 🏋️♀️♀️👨⚕
-
Grow_ Our DNA [No Limits 🚀, Tech4u 💻 y One Committed Team 💪] exists so that you can develop all your technical potential using our training and initiatives. Always stay up to date and learn from a team that you will guide in all your endeavours.
-
Working here pays_ Get more from your salary with the Flexible Remuneration Programme and take advantage of the financial advantages of working for a banking group.
