Submeter

Vulnerability Analyst

Lisboa

Descrição da posição

The Cybersecurity Department is strengthening its team for vulnerability management.

As a Vulnerability Analyst, the main responsibilities will include developing the vulnerability management program, managing the lifecycle of vulnerabilities, tracking indicators, and continuously improving the associated processes.

In this role, the candidate will perform tasks necessary to ensure these responsibilities are centrally managed for the organization, such as analyzing, characterizing, prioritizing, and communicating vulnerabilities with other internal areas. You will also be responsible for keeping documentation up to date and ensuring that technical documentation meets the appropriate quality standards.

The candidate must also ensure continuous and central monitoring of vulnerabilities, regardless of their origin, and have the technical knowledge to understand the risks and necessary actions for proper mitigation.

The candidate will integrate into a dedicated cybersecurity team, with various areas of focus, with which you will need to interact, such as SOC, Offensive Security, Risk Management, Architecture, and others.

What the client expects
- Maintain an up-to-date strategy for the vulnerability management process, ensuring a clear view of risks and the effectiveness of mitigations.
- Conduct vulnerability assessments on systems, networks, and applications to identify potential security weaknesses.
- Analyze and interpret vulnerability scan results or penetration testing reports to determine the severity and potential impact of identified vulnerabilities.
- Validate whether vulnerabilities are indeed exploitable, always confirming when necessary through exploitation, even if it requires creating code or mechanisms to do so.

As a Vulnerability Analyst, the candidate will also be responsible for:

- Prioritizing vulnerabilities based on their severity and potential impact on the organization's operations, assets, and information.
- Ensuring that the relevant teams have remediation plans in place to address identified vulnerabilities.
- Clarifying with the involved teams to ensure the timely and effective resolution of vulnerabilities.
- Staying updated with the latest security threats and trends.
- Documenting vulnerabilities and remediation activities to maintain an accurate, central, and comprehensive record of the organization's security posture.
- Monitoring and reporting global vulnerability indicators to the organization.



Requirements

- Higher education in Computer Engineering, Electronics, or equivalent experience.
- At least 5 years of experience in Cybersecurity, preferably in equivalent roles.
- Ability to exploit vulnerabilities.
- Ability to identify and manage risks.
- Experience in implementing new processes and aligning multiple teams.
- Strong communication and interpersonal skills.
- High degree of autonomy, responsibility, proactivity, and dynamism.
- Critical thinking and results-oriented approach.
- Leadership and teamwork capabilities.

Preferred Knowledge:
- Experience with vulnerability management platforms.
- Scripting and Programming (Python or equivalent).
- In-depth knowledge of operating systems (Windows and UNIX).
- Experience with dashboarding, tracking, and reporting KPIs for activity.

Quer se candidatar?
Cargo
Nome*
Email*
Telefone*
País*
Cidade*
Linkedin
Upload your CV* (máx. 4MB)
Faça upload da sua foto ou video (máx. 4MB)
Submeter