Vulnerability Management Specialist

My responsibilities:Conduct regular vulnerability assessments and scans to identify potential cybersecurity vulnerabilities, misconfigurations and weaknesses across systems and applications.Analyse identified vulnerabilities and prioritise response based on risk, impact, and exploitability to develop effective remediation strategies.Collaborate with IT service stakeholders and engineering teams to implement patching and remediation solutions for vulnerabilities.Monitor threat intelligence feeds and stay updated with the latest vulnerabilities and associated exploits that may affect the organization.Evaluate if exploitation took place for in-scope vulnerabilities, hunt for indicators and observables.Generate comprehensive reports on broad vulnerability trends and remediation statuses for management review.Participate in the development and enhancement of vulnerability management processes and procedures, assist in testing and implementing brand new technologies.Conduct training and awareness programs for team members and stakeholders regarding vulnerability management best practices.Engage in continuous improvement initiatives to enhance the overall security posture of the organization.Collaborate with other operational security stakeholders such as the SOC, CSIRT and dedicated defense teams.The knowledge I own:Junior Candidates:Basic understanding of vulnerability management concepts and processes, including risk assessment and remediation.Familiarity with security tools, particularly vulnerability scanning and assessment tools.High level understanding of industry standards, frameworks and best practices (such as NIST SP 800-40, CVSS, CVE, CWE, OVAL, etc.)Understanding of common security vulnerabilities and their potential impacts (e.g., SANS CWE TOP 25, OWASP Top Ten).Strong problem-solving skills and attention to detail.Medior Candidates:Solid understanding of vulnerability management frameworks and best practices.Experience in vulnerability assessments, including conducting scans and analysing results.Knowledge of patch management processes and risk mitigation strategies.Familiarity with threat intelligence sources and incident response practices.Excellent communication skills to articulate vulnerabilities and collaborate with cross-functional teams effectively.The offer that would convince me:Possibility to improve yourself in a constantly growing organizationSecure, long-term job opportunity at a stable companyAn above average salaryIntensive, individual, and practical trainingVaried and interesting responsibilitiesModern and comfortable working environment (adjustable desk and chair, sports facilities)Home office possibilityLocation:HybridStart date:Immediately​Online application:Please use our online application and attach your resume.AIIS Adatkezelési tájékoztatóPrivacy notice