External Exposure and Vulnerability Management Specialist

Job Overview: Are you an IT security expert ready to lead global security initiatives and protect critical infrastructure As the External Exposure and Vulnerability Management Specialist, you will be at the forefront of safeguarding our cloud and security infrastructure. You'll perform regular technical vulnerability analyses and penetration testing, ensuring that our global IT environment remains robust and secure. This key role also involves managing security hardening, implementing new security appliances, and addressing technical vulnerabilities for external exposure.

Key Responsibilities:

Lead vulnerability management and remediation across the global IT environment.

Conduct regular penetration testing for IT and web applications, identifying threats and vulnerabilities.

Utilize tools like PowerBI and M365 Defender for threat detection and analysis.

Strengthen security controls and policies based on cybersecurity frameworks and industry best

practices.

Manage security hardening for endpoints, servers, and network devices, ensuring encryption of

data at rest and in transit.

Collaborate with third-party vendors on penetration tests, ensuring implementation of

recommended remediations.

Ensure compliance with security standards across user accounts, endpoints, servers, and

network devices.

Conduct firewall ruleset reviews, troubleshooting, and change management security

assessments.

Respond to emerging security threats, continuously improving IT security policies.

Participate in an on-call security operation rotation for incident management and emergency

responses.

Stay current with cybersecurity trends, emerging threats, and vulnerability management best

practices.

Qualifications:

Education: Bachelor's degree in IT, Computer Science, Engineering, or a related field.

At least 5 years in IT security with a focus on vulnerability management, security platform controls, and policy implementation.

Extensive experience in penetration testing, remediation, and external exposure management.

Proficiency in Azure platform and Microsoft Defender security suite (M365, Defender for Cloud, External Attack Surface Management).

Solid knowledge of security hardening for endpoints, servers, and network devices.

Expertise in GPO, Active Directory, Domain Controllers, PowerBI, and SharePoint.

Technical Skills: Nessus Pro, Tenable.io, Kali Linux, Metasploit, Azure Firewall, Microsoft Defender for Identity, MCAS, among other key security tools.

Must be willing to work on a hybrid set-up.

What We Offer:

Be part of a global team of security professionals driving cutting-edge cybersecurity projects.

Opportunity to work with industry-leading tools and platforms to enhance and safeguard

security infrastructure.

Collaborative and innovative work environment where your expertise will have a direct impact.

Join us in protecting critical infrastructure and be at the heart of our security operations.