Security Engineer (Vulnerability Management)

Who are we?Amaris Consulting is an independent technology consulting firm providing guidance and solutions to businesses. With more than 1,000 clients across the globe, we have been rolling out solutions in major projects for over a decade – this is made possible by an international team of 7,600 people spread across 5 continents and more than 60 countries. Our solutions focus on four different Business Lines: Information System & Digital, Telecom, Life Sciences and Engineering. We’re focused on building and nurturing a top talent community where all our team members can achieve their full potential. Amaris is your steppingstone to cross rivers of change, meet challenges and achieve all your projects with success.At Amaris, we strive to provide our candidates with the best possible recruitment experience. We like to get to know our candidates, challenge them, and be able to give them proper feedback as quickly as possible. Here's what our recruitment process looks like:Brief Call: Our process typically begins with a brief virtual/phone conversation to get to know you! The objective? Learn about you, understand your motivations, and make sure we have the right job for you!Interviews (the average number of interviews is 3 - the number may vary depending on the level of seniority required for the position). During the interviews, you will meet people from our team: your line manager of course, but also other people related to your future role. We will talk in depth about you, your experience, and skills, but also about the position and what will be expected of you. Of course, you will also get to know Amaris: our culture, our roots, our teams, and your career opportunities!Case study: Depending on the position, we may ask you to take a test. This could be a role play, a technical assessment, a problem-solving scenario, etc.As you know, every person is different and so is every role in a company. That is why we have to adapt accordingly, and the process may differ slightly at times. However, please know that we always put ourselves in the candidate's shoes to ensure they have the best possible experience.We look forward to meeting you!Job DescriptionABOUT THE JOBConfigure, manage, and optimize the Qualys vulnerability management platform.Conduct regular vulnerability scans on infrastructure, endpoints, applications, and cloud environments.Analyse scan results, validate findings, and prioritize based on business risk.Collaborate with IT, DevOps, and development teams to drive timely remediation.Develop automation scripts (Python, PowerShell, Bash, or APIs) to improve scanning, reporting, and ticketing.Create dashboards and automated reports for stakeholders and leadership.Enhance the vulnerability management lifecycle, including identification, prioritization, remediation, and tracking.Define remediation SLAs and ensure compliance through automation and reporting.Integrate vulnerability management into CI/CD pipelines to support DevSecOps practices.Monitor zero-day vulnerabilities and industry advisories to proactively assess exposure.Research and recommend improvements for vulnerability scanning, automation, and reporting.Provide evidence for compliance and audit requirements.About YouBachelor’s degree in Computer Science, Cybersecurity, or equivalent experience.Hands-on expertise with Qualys (VMDR, Policy Compliance, WAS, etc.).Strong scripting/automation skills (Python, PowerShell, Bash, REST APIs).Solid understanding of operating systems (Windows, Linux/Unix), networking (TCP/IP, DNS, DHCP, VPNs), and application security.Familiarity with cloud platforms (AWS, Azure, GCP), container security (Docker, Kubernetes), and troubleshooting tools (Wireshark, tcpdump, log analysis, monitoring tools).Knowledge of vulnerability scoring (CVSS), exploitability assessment, and remediation best practices.Experience with security technologies (Firewalls, IDS/IPS, SIEM, endpoint protection).Excellent communication skills, able to explain technical findings to both technical and non-technical stakeholders.Experience with ServiceNow or Jira integration, exposure to DevSecOps and CI/CD pipelines, and certifications such as Security+, CEH, Qualys Certified Specialist, or GIAC.WHY AMARIS?Competitive salary and 13th-month salary14+ annual leaves per yearPremium healthcare insurance, starting from your probation periodProject reviews and yearly performance appraisalsAnnual company tripsTeambuilding activities: Team lunch/dinner, events, and celebrations, sports clubs (football, yoga, badminton, etc.)International team with flexible working timeTailor-made career pathTechnical workshops and training coursesMobility: Opportunities to be on-site abroad in our offices in over 60+ countriesEqual OpportunityAmaris Consulting is proud to be an equal opportunity workplace. We are committed to promoting diversity within the workforce and creating an inclusive working environment. For this purpose, we welcome applications from all qualified candidates regardless of gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or other characteristics.