Retour aux Emplois

Cybersecurity Vulnerability Management Specialist

BlackFluoAI
Paris
About the job Cybersecurity Vulnerability Management Specialist


Cybersecurity Vulnerability Management Specialist

Position Overview

We are seeking a Cybersecurity Vulnerability Management Specialist to identify, assess, prioritize, and remediate security vulnerabilities across our enterprise infrastructure and applications, utilizing advanced scanning tools and implementing comprehensive vulnerability management programs to maintain organizational security posture.

Key Responsibilities

Vulnerability Assessment & Management
  • Conduct comprehensive vulnerability assessments using automated scanning tools including InsightVM, Nessus, and Qualys
  • Perform manual security testing and penetration testing to identify complex vulnerabilities
  • Analyze vulnerability scan results, false positives, and prioritize remediation based on risk scoring
  • Track vulnerability lifecycle from discovery through remediation and verification
  • Maintain vulnerability databases and generate executive-level security metrics and dashboards
Risk Analysis & Prioritization
  • Evaluate vulnerability severity using CVSS scoring and business impact assessments
  • Correlate vulnerability data with threat intelligence to identify active exploitation risks
  • Conduct risk assessments considering asset criticality, environmental factors, and exposure levels
  • Develop vulnerability treatment strategies including remediation, mitigation, and acceptance decisions
  • Create risk-based remediation roadmaps and timeline recommendations
Remediation & Patch Management
  • Collaborate with IT teams to develop and implement remediation strategies and patch deployment schedules
  • Coordinate emergency patching for critical vulnerabilities and zero-day exploits
  • Validate remediation effectiveness through re-scanning and verification procedures
  • Manage patch testing procedures and rollback plans for critical systems
  • Implement compensating controls and temporary mitigations for systems that cannot be immediately patched
Reporting & Compliance
  • Generate comprehensive vulnerability reports for technical teams, management, and audit purposes
  • Create security metrics and KPIs to measure vulnerability management program effectiveness
  • Support compliance audits and regulatory requirements (SOX, PCI-DSS, HIPAA, ISO 27001)
  • Maintain vulnerability management documentation and standard operating procedures
  • Present security posture updates to executive leadership and risk committees
Required Qualifications

Technical Skills
  • 6+ years experience in vulnerability management and cybersecurity operations
  • Expert proficiency with vulnerability scanning tools (InsightVM, Nessus, Qualys, OpenVAS)
  • Strong knowledge of common vulnerabilities (OWASP Top 10, CVE database, CWE framework)
  • Experience with patch management systems and automated remediation tools
  • Understanding of network security, web application security, and infrastructure hardening
  • Proficiency in scripting languages (Python, PowerShell) for automation and data analysis
Security Skills
  • Strong understanding of risk assessment methodologies and vulnerability prioritization frameworks
  • Experience with penetration testing tools and manual security assessment techniques
  • Knowledge of security frameworks (NIST, ISO 27001, CIS Controls) and compliance requirements
  • Understanding of threat intelligence integration and attack vector analysis
Preferred Qualifications
  • Bachelor's degree in Cybersecurity, Information Technology, or related field
  • Security certifications (CISSP, CISM, CEH, GCIH, GIAC)
  • Experience with cloud security assessments (AWS, Azure, GCP)
  • Background in DevSecOps and secure software development lifecycle integration
  • Knowledge of security orchestration and automated response (SOAR) platforms
Publié le 2025-09-18

Emplois Recommandés

Médecin Vasculaire Paris H/F

Pointgyn / One Clinic
Paris

Médecin Vasculaire Paris H/F REF75287 Nous recherchons un Phlébologue/Angiologue/Médecin Vasculaire H/F pour une collaboration libérale, salariée ou en remplacement à temps plein ou partiel, au sein …

Voir les Détails
Publié le 2025-08-28

Responsable pôle social H/F

Winsearch
Paris

Description du poste Missions : Dans un cabinet d'expertise-comptable en pleine expansion et à taille humaine, vous prendrez la tête du pôle social suite à un départ à la retraite. Accompagné d…

Voir les Détails
Publié le 2025-09-04

Tech Lead Java Fullstack React/Angular - Services Financiers - Ile-De-France

Sopra Steria
Paris

En tant qu'organisateur de forums de recrutement, Talents Handicap accompagne de très nombreuses entreprises & organisations en France dans leurs recrutements de collaborateurs en situation de handic…

Voir les Détails
Publié le 2025-08-20

Head of Pattern Makers - Atelier Flou

Yves Saint Laurent
Paris

Saint Laurent is seeking a Head of Pattern Makers for the Atelier Flou in Paris. This role involves managing the atelier's daily operations, planning resources, mentoring teams, and ensuring high stan…

Voir les Détails
Publié le 2025-07-08

Tech Lead FullStack Java JavaScript

CAPFI
Paris

Votre mission: - Elaboration du design technique des produits. - Choix des techno, être force de proposition - Comprendre et participer à la conception de l'architecture - Suivre et coacher l…

Voir les Détails
Publié le 2025-09-10

Projeteur CFO CFA H/F

LTd
Paris

Le poste : Dans le cadre d'un recrutement pour le compte de l'un de nos clients nous sommes à la recherche d'un Projeteur CFA/CFO H/F sur des projets tertiaires. Vos missions sont les suivantes …

Voir les Détails
Publié le 2025-08-28

Technicien support de proximité VIP H/F

ECONOCOM France
Paris

Nous vous invitons à relever de nouveaux challenges et à évoluer sur des projets d'expertise et d'innovation en prenant part à l'aventure Econocom. À travers sa marque Workplace Infra Innovation, l…

Voir les Détails
Publié le 2025-09-18

Cybersécurité gouvernance / CISO Bureau - Payment CISO

Visian
Paris

Le besoin Mission de Pilotage de Plans de Remédiation Cyber Le bénéficiaire souhaite une prestation d'accompagnement dans l'objectif d'assurance d'un service de pilotage des plans de remédiatio…

Voir les Détails
Publié le 2025-09-15

Principal Business Consultant - Commercial

Veeva Systems
Paris

Veeva Systems is a mission-driven organization and pioneer in industry cloud, helping life sciences companies bring therapies to patients faster. As one of the fastest-growing SaaS companies in histo…

Voir les Détails
Publié le 2025-07-08

Consultant(e) Chef de projet IT H/F

mc2i
Paris

mc2i est un cabinet de conseil indépendant qui accompagne ses clients dans leurs projets de transformation numérique. Avec plus de 1350 collaborateurs, notre entreprise a su rester à taille humaine gr…

Voir les Détails
Publié le 2025-07-02