The Vulnerability Scanning Subject Matter Expert (SME) will work in close collaboration with colleagues across the Cybersecurity organization and business development teams to facilitate the timely discovery of vulnerabilities across the global network. This role plays a key part in reducing risk by enabling the early detection and remediation of security vulnerabilities.
responsibilities :
Perform scheduled and/ or on demand infrastructure vulnerability scanning, assessments, and reporting.
Agent based scanning and deploying agents in a large environment.
Triage and addressing of issues which arise from scanning and assessments.
Communication of analysis and validation of scan/ assessment results to stakeholders.
Configure, maintain, operate vulnerability management industry standard tools as well as identifying/ implementing new innovative solutions.
Partnering with global teams and third-party service providers.
requirements-expected :
Security testing tools, vulnerability scanning, and exploit frameworks (e.g. Tenable (Nessus), Qualys, Cloud Native Scanning capabilities or other relevant scanning tools).
One or more Cloud platforms and cloud vulnerability assessment approaches i.e. Ali Cloud, AWS, GCP, Azure
Vulnerability assessment and articulating these to both technical and business stakeholders.
Agent scanning and deploying agents in a large environment.
Malware, emerging threats, attacks, and vulnerability management.
Industry frameworks and best practices: CIS Critical Security Controls, Threat Modelling, OWASP, NIST 800 Series.
Operating systems, network protocols, and application development.
Exposure to scripting or programming languages (e.g Python, C+,or PowerShell).
Excellent critical thinking, analytical and problem-solving skills; with exceptional written and verbal communication skills.
Strong team player and collaborative worker.
offered :
We are open to the employment form according to your preferences
Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas
Hybrid working system [2 days office in Cracow / 3 days remote
Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going next
We invest in developing skills and abilities of our employees
We have attractive benefits and provide all the tools required for work f.e.computer
Interpolska Health Care, Multisport, Warta Insurance, training platform (Sages)
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of professional training & courses
