Vulnerability Management Engineer

Young Professional, Professional

Do you think you have what it takes for identifying, evaluating, treating and reporting on security vulnerabilities in IT enterprise landscapes? Do you want to be the go-to-person for all inquiries on vulnerability management aspects, making sure that this entire ecosystem is updated and protected from a security point of view?

  • As Vulnerability Management Engineer, you will work as part of the CSOR²C, Cegeka’s modern SOC. You will:
  • Contribute to the delivery of Cegeka’s MSSP Vulnerability and Compliance Management service;
  • Assist in the deployment of our Vulnerability and Compliance Management solution to customers;
  • Work in close collaboration with customer teams to develop and implement remediation plans for identified vulnerabilities. Provide guidance on patching, configuration changes, and other mitigation strategies to address the vulnerabilities effectively;
  • Get involved in the daily operational management of our Vulnerability and Compliance platform, which is Tenable;
  • Continuously monitor the evolving threat landscape and stay updated on the latest vulnerabilities, exploits, industry trends, advisories, and security bulletins to enhance the MSSP knowledge base and capabilities. Identify emerging threats and vulnerabilities that could impact clients' systems and networks. Conduct research on new vulnerabilities, exploit techniques, and mitigation strategies;
  • Integrate external vulnerability intelligence feeds and sources into the MSSP vulnerability management service. Leverage threat intelligence to prioritize vulnerabilities and improve the accuracy of risk assessments.
  • Participate in the development and enhancement of the MSSP vulnerability management service. Contribute to the creation of policies, procedures, and best practices related to vulnerability management;
  • Develop and maintain vulnerability management metrics and key performance indicators (KPIs) to measure the effectiveness of the MSSP vulnerability management program. Generate regular reports for management and clients to demonstrate progress and identify areas for improvement.
  • Assist the SOC Engineering team in automating processes related to Vulnerability and Compliance management, by scripting or through leveraging the existing toolset;
  • Collaborate with your colleagues in CSOR²C, providing advice to members of the CSIRT and Detection Engineering for the development of detection opportunities on emerging threats.

What you need to succeed:

  • You have minimum 1-2 years of experience in a similar role;
  • Good knowledge of vulnerability management tooling, scripting languages, network protocols, JSON, (REST) API and relational database management system;
  • Experience with Tenable.SC or Tenable.IO is a plus;
  • Strong written and verbal communication skills in English;
  • You have a keen interest in cyber security;
  • You are able to work in a team but also independently;
  • You have a high sense of task ownership;
  • You have analytical, technical and diagnostic skills;
  • You are eager to learn.

What are we offering:

  • You will be joining a true Top Employer including more than 150 Security professionals;
  • To stay ahead in the rapidly changing Cyber Security world, you can participate in our Security Academy: 13 role-based learning paths including certification from technology providers such as Fortinet, CrowdStrike, Vectra, Cisco, Microsoft, CyberArk, Splunk, Tenable and topics such as Security Consultancy, Security Operations and Identity & Access Management;
  • Cegeka proves year after year in the Whitelane Research that we are a reliable and leading partner in the field of IT services, with a first place for Security/Hosting and a great second place for digital transformation;
  • We ask a lot of (talents) from you. Fortunately, you also get a lot in return! Competence and character are essential to us, in addition to experience and ambitions. Cegeka continuously invests in talent management so that every employee can realize their potential;
  • A market-based wage supplemented with fringe benefits. An electric car with charge card or a mobility budget, meal vouchers, eco vouchers, an interesting group and hospitalization insurance, a mobile phone subscription, a fixed expense allowance, a powerful laptop and the option to give your salary package your own accent thanks to our Flex Reward Plan;
  • Flexible working hours and a nice work/life balance;
  • A top team: in which new fresh ideas and initiatives are always welcome! Team events, monthly happy hours and an increasingly legendary company party are also part of this;
  • Continuous learning: knowledge sharing meetings, participation in conferences and external training. Knowledge sharing and learning are key! Depending on your own interests and initiatives, Cegeka offers various horizontal and vertical career paths;
  • We value sustainability by pursuing carbon neutrality with the electrification of our fleet and an environmentally friendly data center. We develop innovative solutions with a positive impact on the environment, people and society, and strive for an inclusive and diverse work environment where everyone is valued and heard;
  • #LI-IF1.

Aspire to more: our promise to you!

At Cegeka you get all the opportunities you need to develop further as a professional. Together we discover what you really want to do for our clients and colleagues. We would like to invite you to grow with us. In an unprecedented variety of challenging and meaningful IT projects. Make your mark on projects with interesting customers where we can make the difference. Aspire to more!

We are always working together here. Intensively, with lots of fun and commitment. It is a culture driven by family values: full of trust, people-oriented, open, loyal and respectful. We offer a lot of freedom and responsibility. We want you to be part of the next phase of a proud, successful, fast-growing, innovative, European IT company full of ambitions.

Application flow

Do you have any questions about this role?

Let's connect.