Vulnerability Management Expert – Patch Orchestration Team

Division: Group Technology Services (GTS)

Short description:

As a global critical financial infrastructure, protecting Euroclear’s information and assets is essential to our business. Security is at the heart of our services and is deeply embedded in our management systems and processes.

You will join our Group Technology Services (GTS) division as a member of the Patch Orchestration Team (Vulture Team). In this role, you will play a key part in safeguarding our digital assets by coordinating remediation activities for identified vulnerabilities and weaknesses across a wide range of IT technologies. This proactive approach helps us stay ahead of potential cyber threats and continuously strengthen our defenses.

We are seeking a motivated Vulnerability Management Specialist to support vulnerability remediation efforts across a diverse group of IT stakeholders. You will act as a liaison between the CISO offensive security teams -responsible for vulnerability scanning—and the IT platform owners responsible for remediation.

Responsibilities:

Vulnerability Scanning & Data Collection

• Support stakeholders in using tools such as Rapid7 InsightVM.
• Monitor weekly reports to ensure successful execution and data accuracy.
• Validate and verify scan findings to reduce exceptions and redundant results, improving data quality.

Reporting & Dashboard Updates

• Generate and maintain vulnerability reports for various teams.
• Update and enhance dashboards in Excel and/or Power BI to reflect current security exposure.
• Maintain remediation KPIs, trends, and compliance metrics.

Remediation Coordination

• Review open vulnerabilities and track remediation progress with asset or application owners.
• Send regular follow-up communications to responsible parties.
• Help stakeholders understand vulnerability severity, impact, and recommended remediation actions.

Advisory & Support

• Respond to queries from IT teams and business units regarding vulnerabilities and mitigation strategies.
• Support teams with vulnerability trend analysis and related insights.
• Assist with patching cycles by correlating vulnerabilities with available patches or configuration changes.

Documentation & Process Management

• Document remediation processes and orchestration activities.
• Maintain accurate records of scanning schedules, reports, and remediation status.
• Track changes or anomalies in vulnerability trends.
• Create dashboards at the team or tribe level for tailored reporting and security posture tracking.

Stakeholder Engagement

• Participate in regular security orchestration and governance meetings with business units and senior stakeholders.
• Collaborate with infrastructure, development, and risk teams to align on remediation priorities.
• Escalate unresolved or critical issues to senior management (CISO & GTS) as needed.

Executive Reporting & Communication

• Draft content for management reports and board-level updates.
• Provide quarterly metrics and summaries on the organization’s security posture.
• Share executive dashboards to highlight progress in risk reduction and key achievements.

Requirements:

Technical Skills:

• Familiarity with vulnerability scanning tools such as Rapid7, Tenable, Qualys, or similar.
• Strong skills in Excel (pivot tables, formulas, macros) and/or Power BI for data analysis and reporting.
• Solid understanding of vulnerability types, CVSS scoring, threat exposure, and patch management.

Process & Communication Skills:

• Proven ability to track, escalate, and follow up on remediation tasks across multiple teams.
• Skilled at explaining technical security topics to non-technical audiences.
• Understanding of risk-based prioritization and remediation strategies.

Stakeholder management:

• Strong interpersonal skills to build and maintain effective relationships with cross-functional teams.
• Ability to coordinate and drive outcomes independently.
• Experience with ITSM tools (e.g., ServiceNow, Jira, Azure DevOps) for managing remediation workflows.

Nice to Have:

• Experience with automated orchestration platforms (e.g., SOAR).
• Familiarity with governance and compliance frameworks (e.g., ISO 27001, NIST, PCI-DSS).
• Experience preparing and presenting reports for senior leadership.

Soft Skills:

• Excellent verbal and written communication skills.
• Strong collaboration skills with both technical and non-technical stakeholders.
• Ability to manage multiple priorities in a fast-paced environment.

#LI-AK2

Why join us

Embark on your new adventure at Euroclear, and work at the heart of the global capital markets. We connect over 2,000 financial institutions across the globe. As an open and resilient infrastructure, we contribute to the stability of the financial markets. We help clients cut through complexity, lower costs, and mitigate risks of financial transactions. At Euroclear, we have the clear ambition to use our key role to facilitate and accelerate a sustainable global financial system. 

What We Offer:

• Work closely with inspiring, supportive and engaged colleagues from more than 80 different countries. 
• Practice your talents in a highly professional international environment. 
• Join a learning and development environment with an emphasis on knowledge sharing and training.
• Competitive salary and comprehensive benefits.

New ways of working

Find your own optimal balance within our hybrid working model, where you can connect at the office and also benefit from remote working. 

Great Place to Work for All

We are committed to creating an inclusive culture that celebrates diversity and strives to be a Great Place to Work for All. All qualified applicants will be considered for employment, regardless of any aspect that makes them unique (including race, religion, national origin, gender, sexual orientation, age, marital status, pregnancy, disability, ...). If you need any specific accommodation due to disability or any other reason, you can let the recruiter know during your application process.