Retour aux Emplois

Cybersecurity Vulnerability Management Specialist

Paris
About the job Cybersecurity Vulnerability Management Specialist

Cybersecurity Vulnerability Management Specialist

Position Overview

We are seeking a Cybersecurity Vulnerability Management Specialist to identify, assess, prioritize, and remediate security vulnerabilities across our enterprise infrastructure and applications, utilizing advanced scanning tools and implementing comprehensive vulnerability management programs to maintain organizational security posture.

Key Responsibilities

Vulnerability Assessment & Management
  • Conduct comprehensive vulnerability assessments using automated scanning tools including InsightVM, Nessus, and Qualys
  • Perform manual security testing and penetration testing to identify complex vulnerabilities
  • Analyze vulnerability scan results, false positives, and prioritize remediation based on risk scoring
  • Track vulnerability lifecycle from discovery through remediation and verification
  • Maintain vulnerability databases and generate executive-level security metrics and dashboards
Risk Analysis & Prioritization
  • Evaluate vulnerability severity using CVSS scoring and business impact assessments
  • Correlate vulnerability data with threat intelligence to identify active exploitation risks
  • Conduct risk assessments considering asset criticality, environmental factors, and exposure levels
  • Develop vulnerability treatment strategies including remediation, mitigation, and acceptance decisions
  • Create risk-based remediation roadmaps and timeline recommendations
Remediation & Patch Management
  • Collaborate with IT teams to develop and implement remediation strategies and patch deployment schedules
  • Coordinate emergency patching for critical vulnerabilities and zero-day exploits
  • Validate remediation effectiveness through re-scanning and verification procedures
  • Manage patch testing procedures and rollback plans for critical systems
  • Implement compensating controls and temporary mitigations for systems that cannot be immediately patched
Reporting & Compliance
  • Generate comprehensive vulnerability reports for technical teams, management, and audit purposes
  • Create security metrics and KPIs to measure vulnerability management program effectiveness
  • Support compliance audits and regulatory requirements (SOX, PCI-DSS, HIPAA, ISO 27001)
  • Maintain vulnerability management documentation and standard operating procedures
  • Present security posture updates to executive leadership and risk committees
Required Qualifications

Technical Skills
  • 6+ years experience in vulnerability management and cybersecurity operations
  • Expert proficiency with vulnerability scanning tools (InsightVM, Nessus, Qualys, OpenVAS)
  • Strong knowledge of common vulnerabilities (OWASP Top 10, CVE database, CWE framework)
  • Experience with patch management systems and automated remediation tools
  • Understanding of network security, web application security, and infrastructure hardening
  • Proficiency in scripting languages (Python, PowerShell) for automation and data analysis
Security Skills
  • Strong understanding of risk assessment methodologies and vulnerability prioritization frameworks
  • Experience with penetration testing tools and manual security assessment techniques
  • Knowledge of security frameworks (NIST, ISO 27001, CIS Controls) and compliance requirements
  • Understanding of threat intelligence integration and attack vector analysis
Preferred Qualifications
  • Bachelor's degree in Cybersecurity, Information Technology, or related field
  • Security certifications (CISSP, CISM, CEH, GCIH, GIAC)
  • Experience with cloud security assessments (AWS, Azure, GCP)
  • Background in DevSecOps and secure software development lifecycle integration
  • Knowledge of security orchestration and automated response (SOAR) platforms
Publié le 2025-11-24

Emplois Recommandés

Responsable d'équipe téléphonie - H/F

Paris

L'équipe téléphonie mobile, actuellement composée de 6 personnes (internes et externes), est tournée vers les utilisateurs et est en relation au quotidien avec les différents établissements du Groupe …

Voir les Détails
Publié le 2025-11-30

MANIPULATEUR (H/F) EN ELECTRORADIOLOGIE

Institut Mutualiste Montsouris
Paris

MANIPULATEUR (H/F) EN ELECTRORADIOLOGIE MANIP RADIO Le plateau technique d'imagerie est composé de : 2 IRM 1,5T GE, 1 scanner CT ONE GENESIS TOSHIBA, 1 scanner OPTIMA CT 660 GE, 2 salles de radiologie…

Voir les Détails
Publié le 2026-01-09

Senior Data Analyst

Paris

Who we are Yubo is the Social Discovery app to make new friends and hang out online. By eliminating likes and follows, we empower our users to create genuine connections and show up as their true …

Voir les Détails
Publié le 2025-11-15

Candidatures spontanées

Paris

Vous ne trouvez pas d'offre correspondant à votre profil pour le moment ? Déposez votre candidature spontanée ici ! Nous sommes toujours à la recherche de nouveaux talents et serions ravis d'en appren…

Voir les Détails
Publié le 2025-11-15

Responsable E-Commerce et Data Analytics H/F

Paris

Description de l'entreprise Depuis 1984, Claudie Pierlot parcourt le monde et enrichit son univers au gré de nouvelles escales. Mi-vestiaire, mi-manifeste, le studio parisien décline sa folie douc…

Voir les Détails
Publié le 2025-11-24

IBO/IBODE en CDI - 8H/18H

Fed Finance
Paris 14e

En tant qu’Infirmier(e) de Bloc Opératoire (circulant(e), instrumentiste, ou aide-opératoire), vous intégrerez un Etablissement de Santé Privé d’Intérêt Collectif (ESPIC) et l’un des îlots suivants :…

Voir les Détails
Publié le 2025-12-03

Chef d’atelier opérationnel ou Technicien qualifié Scooters et motos YAMAHA

Paris 2e

Nous recherchons notre Chef d’atelier opérationnel ou Technicien qualifé. Au sein d’une équipe dynamique de 5 personnes, ambiance familiale. Au moins 5 ans d’expérience en concession Moto ou Au…

Voir les Détails
Publié le 2025-12-15

Senior Product Data Scientist

Paris

Join us at Entrust At Entrust, we're shaping the future of identity centric security solutions. From our comprehensive portfolio of solutions to our flexible, global workplace, we empower careers,…

Voir les Détails
Publié le 2025-12-20