Plus
Включить Plus
Назад
Company hidden
4 дня назад

Vulnerability Management Specialist (Cybersecurity)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Portugal
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Vulnerability Management Specialist (Cybersecurity): Establishing and running Vulnerability and Exposure Management practices to identify and reduce risk across technology stacks with an accent on structured remediation processes and application security. Focus on building automation for vulnerability tracking, validating penetration testing findings, and collaborating with developers to implement security fixes at scale.

Location: Hybrid (Lisbon, Portugal) - Office attendance required four days a week

Company

hirify.global is a fintech platform providing access to alternative investments for wealth managers and their clients.

What you will do

  • Build and manage Vulnerability and Exposure Management processes, providing continuous monitoring and prioritization.
  • Drive the remediation of vulnerabilities and security weaknesses in collaboration with engineering teams.
  • Develop automation capabilities to ingest, track, and report vulnerabilities and exposures.
  • Implement application security workflows, including SAST, SCA, and API security in collaboration with developers.
  • Review and validate penetration testing findings and support threat modeling activities.
  • Collaborate with the SOC to improve detection and alerting capabilities based on identified risks.

Requirements

  • Experience in Vulnerability Management, Exposure Management, or Application Security.
  • Strong understanding of web and API security risks.
  • Proficiency in scripting and automation, preferably using Python.
  • Experience with modern CI/CD environments and systems engineering.
  • Proven ability to validate penetration testing findings and work directly with developers.
  • Must be based in or able to work from the Lisbon office 4 days a week.

Nice to have

  • Relevant security certifications.
  • Experience with GitLab or GitHub security features.
  • Experience with Wiz, CSPM, CrowdStrike, or code scanning tools (SAST, SCA, DAST).
  • Knowledge of secure code reviews, threat modeling, and Burp Suite.

Culture & Benefits

  • Total compensation package including competitive salary, annual performance bonus, and equity for full-time employees.
  • 100% employer-paid health and dental insurance.
  • Generous paid time off (PTO).
  • Flexible work arrangement with one remote day per week (Friday).

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →