sharing the costs of sports activities
Technology Specialist - CDO (vulnerability management analyst)
HEINEKEN Global Shared Services
- aleja Jana Pawła II 43a, Czyżyny, KrakówKraków, Lesser Poland
- offer expired 2 months ago
- contract of employment
- specialist (Mid / Regular)
- remote recruitment
- запрошуємо працівників з України
Technologies we use
Upholding Vulnerability Management processes across the enterprise, and ensure stakeholders buy-in.
Defining and measuring the necessary Vulnerability Management metrics.
Combining the various sources of vulnerabilities information - pentests, scans, bug bounties, external researchers etc. - into one coherent picture.
Driving the Vulnerability Management activities as part of a specialized Real-time Threat Management team.
Supporting identification of vulnerabilities by enhancing vulnerability identification at process and technology level.
Supporting identification, triaging assignment and remediation of vulnerabilities, ensuring that vulnerability management lifecycle is followed.
Timely responding to security threats by collaboration with other security teams and providing effective remediation solution complemented by compensatory controls.
Providing data driven insights into improvement opportunities for infrastructure vulnerability management process.
Preparing reports for technical teams, compliance deliverables and executive management highlighting current status of infrastructure from vulnerability management perspective.
You have 3+ years working experience in security operations and advanced level of understanding regarding systems security at both technical and procedural level
You have a good level of understanding of infrastructure vulnerability scanning tools, EDR solutions
You have understanding (technical aspects of) penetration testing and results (including scoping and organizing of pentests, use of vulnerability scanners, vulnerability management tools) and basic knowledge of web application vulnerabilities and standards
You have a good understanding of IT fundamentals across networking (such as DNS, SNMP, DHCP, IPSEC etc.), system, and application layers
You have Bachelor degree or equivalent experience
You have experience with outsourced managed services, using ITIL processes
You have certifications such as CEH, CIR, CISM, CISA, CGEDIT, any of the OWASP or similar are a plus
Knowledge of industry standard security frameworks for information systems (CVSS, CIS Benchmarking, OWASP , NIST, ISO 27001/2, CSA, COBIT)
Basic familiarity with scripting programming e.g. Bash, PowerShell, Python
Relevant technical solutions such as vulnerability management tooling (Nessus, Qualys, Defender for Endpoints)
Kusto query language knowledge (KQL) is a plus
Vulnerability remediation tools & techniques
System security (operating systems, applications), networking, and web applications
Basic knowledge on security solutions (SSL, Remote Access, IPSEC, Reverse Proxy, IDS/IPS, Firewall, Multi Factor Authentication) and practical knowledge on application security controls
Threat Modelling experience.
Basic knowledge on other infrastructure. Eg: Active Directory, DNS, IP Addressing, Azure AD and:
Penetration testing, Malware engineering
Offensive security specialist (e.g pen tester, ethical hacker, etc.)
Sysdmin skills (Linux/MAC/Windows)
Network admin skills
Network security administrator
Enabling services (e.g NTP, SMTP, patching, Antivirus)
Server infrastructure (VMWare ESXi, storage, Azure, AWS)
basic cryptography knowledge (basic algorithm knowledge)
authentication protocol knowledge
What we offer
Private Medical Healthcare
Local and global job opportunities within HEINEKEN
ACCA Approved Employer
Work from home flexibility (also after COVID)
private medical care
sharing the costs of professional training & courses
remote work opportunities
corporate sports team
parking space for employees
extra social benefits
employee referral program
flexible work from home scheme after pandemic/lockdown
open bar on Fridays
HEINEKEN Global Shared Services
At HEINEKEN Kraków (HEINEKEN Global Shared Services) our success comes directly from our great people. We are a growing team of finance, accounting, data and technology professionals ready to „WOW” the world with our expertise, passion and pride to be GREEN. Our employees can develop in the following areas: Purchase to Pay, Order to Cash, Record to Report, Business Performance Management, Accounting, Reporting & Consolidation, Digital & Technology, Transformation Management, Global Audit, Global Process & Control Improvement, Global Process Expertise, and Support Functions like HR, Service Management, Global Master Data, Internal Finance, Change & Communications.
An integral part of HEINEKEN’s day-to-day operations, our Global Shared Services center has significantly contributed to leveraging the benefits of the company since 2012. With more than 1100 employees comprised of 27 nationalities, we collaborate with 26 Operating Companies in 25 languages. A truly global experience! We value enjoyment of life, respect for people and planet and passion for quality in all that we do.
HEINEKEN is a proud independent global brewer, committed to surprise and excite consumers with its brands and products everywhere. The brand that bears the founder's family name - Heineken® - is available in almost every country around the globe and is the world's most valuable international premium beer brand. Our company is present in over 70 countries, operates more than 160 breweries and markets more than 250 brands.
HEINEKEN Global Shared Services Center was awarded as the Business Services Firm of the Year 2021!