Cybersecurity – External Surface Management

Job Description

We are looking for a skilled Cybersecurity Specialist to join our External Surface Management team. This role will be pivotal in managing the external security posture of the organization, focusing on vulnerability scanning, risk assessment, and security ratings for internet-exposed assets. You will work within a dynamic and dedicated team, collaborating across various global teams to ensure the protection of critical IT assets and improve overall cybersecurity resilience.

In this role, you will help drive the security program forward, monitor vulnerabilities, manage SaaS solutions for vulnerability scanning and scoring, and contribute to building comprehensive reports to inform senior leadership. You will also serve as the main point of contact for entities in Portugal, providing expert guidance and support.

Key Responsibilities:

• Perform regular vulnerability scans on all internet-exposed assets.
• Manage and enhance security ratings for internet-exposed assets across the organization.
• Maintain relationships with software vendors, ensuring service delivery and support for vulnerability scanning tools.
• Oversee the management of SaaS solutions related to cyber vulnerability and security scoring.
• Build detailed vulnerability reports and present them to senior leadership and the CISO board.
• Contribute to the evaluation and implementation of new solutions to complement existing cybersecurity services.
• Serve as the primary point of contact for onshore teams in Portugal, coordinating actions and providing expert guidance.

Main Tasks:

• Act as the External Attack Surface Management (EASM) point of contact for specific entities.
• Assist entities in defining action plans, performing technical analysis of false positives, and conducting risk assessments of vulnerabilities.
• Collaborate with solution providers to resolve issues impacting the scanning and security service.
• Contribute to the creation of vulnerability reports and ensure the accuracy and efficiency of the reporting process.
• Analyze, assess, and report on security risks, ensuring that impacts are communicated to relevant CISOs and stakeholders.
• Create and analyze various reports on vulnerabilities and security ratings.
• Manage administrative tasks related to the platforms used for scanning and vulnerability detection, including managing assets and user accounts.

Qualifications

Technical Skills:

• Strong understanding of IT systems, cybersecurity risks, and vulnerability management, particularly related to external attack surface management and security ratings.
• Proficiency in offensive security practices, including hacking techniques and audit methodologies.

Language Skills:

• English (Mandatory)
• French (Nice to have)

Soft Skills:

• Strong ability to collaborate and work effectively within a team.
• Experience leading meetings, seminars, and committees.
• Ability to analyze, synthesize, and simplify complex information.
• Detail-oriented and highly organized.
• Capable of establishing and maintaining strong professional networks.

Additional Information

This is an exciting opportunity to work in a global, fast-paced environment with a focus on enhancing the organization’s cybersecurity posture. You’ll be joining a passionate team in Lisbon and Paris, contributing to critical projects that ensure the security of external-facing IT systems. If you're experienced in cybersecurity and vulnerability management, this role offers an excellent opportunity to make a tangible impact.

Apply today to join our team and help us safeguard the organization’s digital landscape!