Overview
Security & Vulnerability Analyst Jobs in Lisboa, Lisbon, Portugal at HITO Solutions
Title: Security & Vulnerability Analyst
Company: HITO Solutions
Location: Lisboa, Lisbon, Portugal
Our client is an international tech consulting company with +25 years of experience offering solutions to support companies’ businesses and digital transformation.
(This position is hybrid in Lisbon or Porto)
As a Vulnerability Analyst, your main responsibilities will include developing the vulnerability management program, overseeing the lifecycle of vulnerabilities, monitoring key indicators, and continuously improving associated processes.
You will also be responsible for continuously monitoring vulnerabilities, regardless of their origin, requiring strong technical expertise to understand risks and determine the necessary actions for proper mitigation.
Responsibilities
Maintain an updated strategy for the vulnerability management process, ensuring a clear risk overview and effective mitigations;
Conduct vulnerability assessments on systems, networks, and applications to identify potential security weaknesses;
Analyze and interpret vulnerability scan results and penetration testing reports to determine the severity and potential impact of identified issues;
Validate whether vulnerabilities are truly exploitable, testing them when necessary, including writing scripts or mechanisms for verification;
Prioritize vulnerabilities based on severity and potential impact on business operations, assets, and organizational data;
Work with relevant teams to ensure the implementation of remediation plans for identified vulnerabilities;
Provide guidance and clarification to teams involved in the remediation process to ensure timely and effective resolution;
Stay updated with the latest security threats and trends;
Document vulnerabilities and remediation activities, maintaining a comprehensive and centralized security posture record;
Track and report global vulnerability indicators to the organization.
Requirements
Bachelors or Masters degree in Computer Engineering, Electrical Engineering, or equivalent experience;
At least 5 years of experience in cybersecurity, preferably in similar roles;
Strong vulnerability exploitation capabilities;
Ability to identify and manage risks effectively;
Experience in implementing new processes and ensuring alignment across multiple teams;
Excellent communication and interpersonal skills;
High level of autonomy, responsibility, proactiveness, and dynamism;
Critical thinking and a results-oriented mindset;
Strong leadership skills and ability to work collaboratively in a team.
Prefered Knowledge
Experience with vulnerability management platforms;
Scripting and programming (Python or equivalent);
In-depth knowledge of operating systems (Windows & UNIX);
Experience in dashboarding, monitoring, and reporting KPIs related to vulnerability management.
