Job Overview:
This role focuses on enhancing and implementing the global vulnerability management process to protect the organization and its customers from security threats. You will support vulnerability management across on-premises and cloud environments, primarily in the APAC and Greater China regions. The position involves identifying, assessing, and mitigating vulnerabilities, ensuring timely remediation, and collaborating with global teams to improve cybersecurity practices.
Key Responsibilities:
- Analyze and triage security threats to identify risks and potential impacts by conducting in-depth analysis of the identified threat, attack vector or intelligence information
- Support and enforce the global Vulnerability Management strategy.
- Act as the primary point of contact for the APAC region regarding the Vulnerability Management lifecycle (including scanning and penetration testing).
- Rate technical vulnerabilities and prioritize remediation based on business impact.
- Assist application and infrastructure teams with vulnerability remediation.
- Perform internal vulnerability scans and analyze results.
- Review vulnerabilities reported by external researchers and confirm their validity.
Qualifications:
- Degree in Computer Science, Information Technology, or related field.
- Certifications such as OSCP, OSCE, CREST is a plus.
- 5+ years of experience in technical cybersecurity, especially offensive security.
- Strong experience and understanding of Penetration Testing.
- Strong knowledge of networking, network security, and vulnerability management tools (e.g., Qualys, ServiceNow Vulnerability Response).
- Experience with vulnerability management lifecycle and scanning concepts.
- Understanding of cyber security standards, threat intelligence, and the Cyber Kill Chain.
- Hands-on experience with vulnerability scanning and remediation processes.
