Werfen is a growing, family-owned, innovative company founded in 1966 in Barcelona, Spain.
Para presentar una candidatura, simplemente lea la siguiente descripción del puesto y asegúrese de adjuntar los documentos pertinentes.
We are a worldwide leader in specialized diagnostics in the areas of Hemostasis, Acute Care Diagnostics, Transfusion, Autoimmunity, and Transplant.
Through our Original Equipment Manufacturing (OEM) business line, we research, develop, and manufacture customized assays and biomaterials.
We operate directly in 30 countries, and in more than 100 territories through distributors.
Our Headquarters and Technology Centers are located in the US and Europe, and our workforce is more than 7,000 strong.
The Vulnerability Management Analyst is responsible for identifying, prioritizing, and helping resolve security weaknesses across our corporate environment.
In this role, you will bridge the gap between security discovery and IT remediation by providing the necessary context to address risks before they can be exploited.
You will manage both internal and external scanning to ensure that the most critical threats to the business are handled with urgency.
Key Accountabilities Maintain Visibility: Oversee internal and external scanning operations to identify unauthorized systems or unknown internet-facing assets.
Guide Remediation: Provide IT teams with clear, technical instructions on how to fix identified vulnerabilities.
Risk Prioritization: Analyze vulnerability data to ensure company resources are focused on the high-risk flaws that pose a direct threat to operations.
Automate Workflows: Use automation to track the lifecycle of a vulnerability, from initial detection through to final remediation.
Evaluate Controls: When a patch cannot be applied, assess the effectiveness of other security controls and provide a formal risk assessment.
Coordinate Updates: Partner with infrastructure teams and the Change Advisory Board to ensure system updates follow a standard, predictable schedule.
Verify Security: Confirm that defensive security controls are functioning correctly across the network perimeter.
Performs other duties and responsibilities as assigned.
Networking/Key relationships Security Leadership: Support organizational goals by reporting on the current threat environment.
Service Providers: Coordinate with external partners to manage 24/7 alerts and escalations.
IT & Dev Ops: Partner with these teams to ensure security fixes are applied effectively across our systems.
GRC: Provide the technical assessments needed for formal risk acceptance and compliance approvals.
Minimum Knowledge & Experience for the position: Education: Bachelor's degree in computer science, cybersecurity, or related field.
Experience: 5+ years of hands-on experience in cybersecurity role.
Skills & Capabilities: Strategic Thinking: Align operational goals with business risk and security strategy.
Technical Depth: Solid understanding of tools, threats, and mitigation techniques.
Communication: Clear and effective reporting to technical and executive audiences.
Collaboration: Strong cross-functional engagement and influence.
Continuous Learning: Commitment to continuous professional development.
Travel requirements: Up to 20% of time.
Individual Contributor Core Competencies: Managing Work Effectively managing one's time and resources to ensure that work is completed efficiently.
Emotional Intelligence Essentials Establishing and sustaining trusting relationships by accurately perceiving and interpreting own and others' emotions and behavior; leveraging insights to effectively manage own responses so that one's behavior matches one's values and delivers intended results.
Building Partnerships Developing and leveraging relationships within and across work groups, including cross-functional groups, to achieve results.
Decision Making Identifying and understanding problems and opportunities by gathering, analyzing, and interpreting quantitative and qualitative information; choosing the best course of action by establishing clear decision criteria, generating and evaluating alternatives, and making timely decisions; taking action that is consistent with available facts and constraints and optimizes probable consequences.
Continuous Improvement Originating action to improve existing conditions and processes; identifying improvement opportunities, generating ideas and implementing solutions. xpzdshu
Continuous Learning Actively identifying new areas for learning; regularly creating and taking advantage of learning opportunities; using newly gained knowledge and skill on the job and learning through their application.