Senior Vulnerability Management Engineer

Rabat Freelance

À propos de CYCLAD MAROC

Cyclad est une entreprise spécialisée dans le recrutement de profils qualifiés dans le domaine de l’informatique. Nous sommes présents en France, en Pologne et au Maroc. Nous misons sur la transparence et la proximité avec les experts qui nous rejoignent.

Le poste

Responsibilities:

Vulnerability Assessment and Management:

  • Serve as the Subject Matter Expert on vulnerability management in infrastructure & application security domain.

  • Identify and prioritize active critical vulnerabilities for remediation based on risk-based approach and/or business risk appetite.

  • Coordinate with local Entity Security team, and IT team for identified vulnerabilities, detected through vulnerability management process.

  • Analyzing structured and unstructured datasets from various sources to analyses vulnerabilities and produce remediation recommendations.

  • Provide technical advisory to IT Production and/or Application Teams to effectively remediate vulnerabilities.

  • Recommend compensatory measures when remediation is not possible and ensure that the risk acceptance process is followed accordingly.

  • Track, follow up and document the status of all vulnerabilities and updates in the registry.

  • Ensure timely follow up for remediation of vulnerabilities and assess the risk impact according to internal risk methodologies and framework.

  • Assist in investigation of security issues by reviewing results from relevant alerts and other vulnerability identification method (vulnerability scanning, web apps security testing, etc.)

Profil recherché

Hard Skills:

  • Strong understanding of vulnerability assessments and infrastructure security reviews for servers, web apps, and network devices.

  • Solid technical understanding of threat and vulnerability assessment activities (DAST and SAST), processes, and systems.

  • Strong knowledge of patch management, network security, server system administration, and system hardening.

  • Knowledge relevant Cyber Security product such as Qualys, Tenable, BurpSuite, Checkmarx, etc

  • In depth knowledge of applying security controls to operational technology services.

  • Proficient in reporting tool (ie, MS Office, Power BI, etc)

Soft Skills:

  • Excellent writing and presentation skills are required in order to communicate findings and status

  • Detail oriented, organized, methodical, follow up skills with an analytical thought process

  • Innovative and efficiency focused

  • Excellent analytical and problem-solving skills

Experience:

  • Diploma or Bachelor’s Degree in IT/Computer Science or relevant courses

  • Minimum 5 years of professional experience in Vulnerability Management & Application Security services

  • Relevant cybersecurity professional certification is an advantage (ie, CISSP, GWEB, CEH, etc)

Détails sur le poste
Rabat, Rabat-Salé-Kénitra, Maroc
Freelance - Temps plein
Propulsé parTaleez