Oferta pracy

Technology Specialist - CDO (vulnerability management analyst)

HEINEKEN Global Shared Services

  • offer expired 8 days ago
  • contract of employment
  • full-time
  • specialist (Mid / Regular)
  • remote recruitment
  • запрошуємо працівників з України
ukrainian-friendly-overlay
Запрошуємо працівників з України
Роботодавець відкритий для працевлаштування громадян України

HEINEKEN Global Shared Services

aleja Jana Pawła II 43a

Czyżyny

Kraków

Technologies we use

Expected

  • SQL

  • CIR

  • CISM

  • ITIL

Operating system

Your responsibilities

  • Upholding Vulnerability Management processes across the enterprise, and ensure stakeholders buy-in.

  • Defining and measuring the necessary Vulnerability Management metrics.

  • Combining the various sources of vulnerabilities information - pentests, scans, bug bounties, external researchers etc. - into one coherent picture.

  • Driving the Vulnerability Management activities as part of a specialized Real-time Threat Management team.

  • Supporting identification of vulnerabilities by enhancing vulnerability identification at process and technology level.

  • Supporting identification, triaging assignment and remediation of vulnerabilities, ensuring that vulnerability management lifecycle is followed.

  • Timely responding to security threats by collaboration with other security teams and providing effective remediation solution complemented by compensatory controls.

  • Providing data driven insights into improvement opportunities for infrastructure vulnerability management process.

  • Preparing reports for technical teams, compliance deliverables and executive management highlighting current status of infrastructure from vulnerability management perspective.

  • You are a good Candidate if:

  • You have 3+ years working experience in security operations and advanced level of understanding regarding systems security at both technical and procedural level

  • You have a good level of understanding of infrastructure vulnerability scanning tools, EDR solutions

  • You have understanding (technical aspects of) penetration testing and results (including scoping and organizing of pentests, use of vulnerability scanners, vulnerability management tools) and basic knowledge of web application vulnerabilities and standards

  • You have a good understanding of IT fundamentals across networking (such as DNS, SNMP, DHCP, IPSEC etc.), system, and application layers

  • You have Bachelor degree or equivalent experience

  • You have experience with outsourced managed services, using ITIL processes

  • You have certifications such as CEH, CIR, CISM, CISA, CGEDIT, any of the OWASP or similar are a plus

Our requirements

  • Knowledge of industry standard security frameworks for information systems (CVSS, CIS Benchmarking, OWASP , NIST, ISO 27001/2, CSA, COBIT)

  • Basic familiarity with scripting programming e.g. Bash, PowerShell, Python

  • Relevant technical solutions such as vulnerability management tooling (Nessus, Qualys, Defender for Endpoints)

  • Kusto query language knowledge (KQL) is a plus

  • Vulnerability remediation tools & techniques

  • System security (operating systems, applications), networking, and web applications

  • Basic knowledge on security solutions (SSL, Remote Access, IPSEC, Reverse Proxy, IDS/IPS, Firewall, Multi Factor Authentication) and practical knowledge on application security controls

  • Threat Modelling experience.

  • Basic knowledge on other infrastructure. Eg: Active Directory, DNS, IP Addressing, Azure AD and:

  • Penetration testing, Malware engineering

  • Offensive security specialist (e.g pen tester, ethical hacker, etc.)

  • Sysdmin skills (Linux/MAC/Windows)

  • Network admin skills

  • Network security administrator

  • Enabling services (e.g NTP, SMTP, patching, Antivirus)

  • Server infrastructure (VMWare ESXi, storage, Azure, AWS)

  • basic cryptography knowledge (basic algorithm knowledge)

  • DB knowledge

  • authentication protocol knowledge

What we offer

  • Private Medical Healthcare

  • Performance bonus

  • Sodexo card

  • Life insurance

  • Referral program

  • Development opportunities

  • Local and global job opportunities within HEINEKEN

  • ACCA Approved Employer

  • Work from home flexibility (also after COVID)

  • Benefits

  • sharing the costs of sports activities

  • private medical care

  • sharing the costs of professional training & courses

  • life insurance

  • remote work opportunities

  • integration events

  • corporate sports team

  • parking space for employees

  • extra social benefits

  • pre-paid cards

  • christmas gifts

  • employee referral program

  • charity initiatives

  • flexible work from home scheme after pandemic/lockdown

  • open bar on Fridays

HEINEKEN Global Shared Services

At HEINEKEN Kraków (HEINEKEN Global Shared Services) our success comes directly from our great people. We are a growing team of finance, accounting, data and technology professionals ready to „WOW” the world with our expertise, passion and pride to be GREEN. Our employees can develop in the following areas: Purchase to Pay, Order to Cash, Record to Report, Business Performance Management, Accounting, Reporting & Consolidation, Digital & Technology, Transformation Management, Global Audit, Global Process & Control Improvement, Global Process Expertise, and Support Functions like HR, Service Management, Global Master Data, Internal Finance, Change & Communications.

An integral part of HEINEKEN’s day-to-day operations, our Global Shared Services center has significantly contributed to leveraging the benefits of the company since 2012. With more than 1100 employees comprised of 27 nationalities, we collaborate with 26 Operating Companies in 25 languages. A truly global experience! We value enjoyment of life, respect for people and planet and passion for quality in all that we do.

HEINEKEN is a proud independent global brewer, committed to surprise and excite consumers with its brands and products everywhere. The brand that bears the founder's family name - Heineken® - is available in almost every country around the globe and is the world's most valuable international premium beer brand. Our company is present in over 70 countries, operates more than 160 breweries and markets more than 250 brands.

HEINEKEN Global Shared Services Center was awarded as the Business Services Firm of the Year 2021!

Scroll to the company’s profile