Vulnerability Management Specialist 1
Job Summary
We are seeking a Vulnerability Management Specialist to join our Information Security team. The candidate will own and continuously improve the vulnerability management process perform risk-based prioritization of vulnerabilities and collaborate closely with IT and business units. This role requires a proactive individual with strong technical security expertise excellent communication skills and the ability to translate technical risks into business-relevant messages.
Key responsibilities:
Vulnerability management:
- Own and continuously improve the vulnerability management process.
- Perform risk-based prioritization of vulnerabilities in close collaboration with IT and business units.
- Monitor remediation SLAs and track critical findings through to closure.
- Establish and maintain reporting KPIs and management dashboards.
- Coordinate vulnerability scans and assess relevant security advisories.
Technical security (core responsibilities):
- Analyze and secure IT systems networks and applications.
- Design configure and continuously optimize automated vulnerability scanning across heterogeneous environments.
- Validate scan results to eliminate false positives and perform risk assessments using CVSS v3/v4 incorporating internal business impact context.
- Support implementation and enhancement of technical security controls (e.g. system hardening access control network security).
- Contribute to security assessments penetration testing and technical reviews.
- Support integration of security into development and operations processes (DevSecOps).
- Analyze security incidents and derive improvement measures.
- Assist in the selection implementation and optimization of security tools.
Governance & collaboration:
- Collaborate with Risk Compliance and IT teams.
- Support audits and regulatory requirements (e.g. ISO 27001 NIS2).
- Promote security best practices and awareness across the organization.
Senior-level communication & presentation capabilities:
- Ability to translate technical risks into clear business-relevant messages.
- Experience preparing and delivering concise management presentations and reports.
- Strong stakeholder communication skills including interaction with senior leadership.
- Capability to provide clear actionable recommendations for decision-making.
- Confident communication in management and audit contexts.
Qualifications :
Must have requirements:
- Degree in Computer Science Information Security or comparable qualification.
- Professional experience in Information Security / IT Security.
- Solid experience in Vulnerability Management and working with scanning tools (governance operations configuration monitoring reporting).
- Strong understanding of IT infrastructures (networks operating systems ideally cloud).
- Practical knowledge of technical security controls and implementations.
Nice to have requirements:
- Experience with security tools (e.g. SIEM EDR).
- Knowledge of automation / scripting.
- Experience in DevSecOps or Cloud Security.
- Security certifications (e.g. CEH CISSP CompTIA Security).
Additional Information :
Hybrid work model: 3 days from the office 2 days of home office.
Office locations: Warszawa Lublin Poznań
On call duty
Additional Information
We hereby inform you that Inetum Polska sp. z o.o. has implemented an internal reporting (whistleblowing) procedure. The content of the procedure and the possibility to submit an internal report are available at:
No
Employment Type :
Full-time
About Company
Inetum is a European leader in digital services. Inetums team of 28,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetums solutions aim at contributing to its clients performance and innovation as well ... View more