Overview Nestlé is seeking a highly experienced Vulnerability Management Specialist to join our Cyber SOC Vulnerability Management team. You will participate in building and evolving an advanced Global Vulnerability Management program, consolidating data from various platforms, assessing and tracking potential cyber threats, coordinating response and remediation efforts, and driving automation and process improvement.
You will work with cross-functional multinational teams to improve operational processes, integrate with other tools, and automate daily tasks. You will identify threats and security gaps and collaborate with the Security Community of Practice to develop measures to protect Nestlé’s information.
Key responsibilities Work effectively with business units and technical teams to facilitate building and expanding vulnerability reduction and remediation capabilities.
Contribute to the design and implementation of the vulnerability orchestration platform, vulnerability scanning, automation and reporting.
Develop high-level documentation for non-technical business owners to communicate security risks and recommendations.
Collaborate with leadership, partner teams, and service owners to drive effective teamwork, communication, and commitment across multiple disparate groups with competing priorities.
Lead escalations and coordinate remediation of cyber security threats maintaining an in-depth knowledge of common attack vectors, common security exploits, and countermeasures.
Mentor and guide more junior colleagues and provide training to improve skills and knowledge of other team members.
Liaise with the Security Product Manager to identify best practices and continuously improve technical standards, processes, procedures, and guidelines to enable proper risk mitigation for each business capability.
Required Profile Bachelor's or Master’s Degree in Computer Science, Information Security, or another similar relevant degree.
4+ years of vulnerability management, threat assessment, risk management, incident response or other cyber security experience.
In-depth understanding of automated and manual techniques to test security within systems and network protocols, web application technologies, threat based IS / IT security, latest security technologies and concepts, vulnerability management, technical security testing and maturity assessments, secure software lifecycle development (SecDevOps).
Experience with vulnerability scanning solutions and security orchestration and / or automation platforms.
Sound awareness of leading vendor products / applications such as operating systems, databases, web servers or network devices including product lifecycle & release schedules.
Proficient in at least one programming language such as Groove, Java, Python or PowerShell.
Ability to present information to a wide variety of internal stakeholders, including senior level leadership, and communicate effectively in English.
Experience working in a global environment and with virtual teams.
Experience in project management, team management and product roadmap definition.
Relevant technical and industry certifications are a plus.
Show us that you are enthusiastic, curious, fast learner and a team player who is used to working with agile practices. Your flexibility, self-motivation and ability to deliver on deadlines will set you apart. Please apply in English.
The Nestlé Group is the world’s largest food and beverage company with a presence in 189 countries, 447 factories, and 339,000 employees, committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favourites. Nestlé is based in Vevey, Switzerland. Learn more about our Group and reasons to join us.
#J-18808-Ljbffr