Especialista Em Gestão De Vulnerabilidades (m/f/div)

Evonik Brasil Ltda

São Paulo, Brazil
Not specified; not specified; competitive compensa...
Hybrid
Define vulnerability management policy
Prioritize vulnerabilities by risk level
Orchestrate patching with devops teams
Evonik Brasil Ltda is seeking a Vulnerability Management Specialist to enhance its operational technology security amidst increasing connectivity and cyber risks. The role involves defining vulnerability management policies, orchestrating patching processes, and generating executive reports, requiring a background in IT, information security, and significant experience with vulnerability management tools

Job Summary

  • The role focuses on protecting OT systems from cyber threats through vertical integration and automated data exchange.
  • Candidates will define vulnerability scanning schedules, prioritize risks based on exploitability and asset criticality, and enforce correction SLAs.
  • Evonik offers hybrid work models, competitive compensation, and opportunities to grow within a global team of over 33,000 colleagues.

Matching Summary

Match Score: 85

Evonik Brasil Ltda is seeking a Vulnerability Management Specialist to enhance its operational technology security amidst increasing connectivity and cyber risks. The role involves defining vulnerability management policies, orchestrating patching processes, and generating executive reports, requiring a background in IT, information security, and significant experience with vulnerability management tools.

Salary

Not specified; Not specified; Competitive compensation mentioned

Skills & Requirements

Must-have

  • Define vulnerability management policy
  • Prioritize vulnerabilities by risk level
  • Orchestrate patching with DevOps teams
  • Experience with Qualys or Tenable tools
  • Knowledge of NIST SP 800-40 framework

Nice-to-have

  • Fluent English language skills
  • Desirable Spanish language proficiency
  • Global project collaboration experience
  • Executive reporting and metrics generation

Key Requirements

  • Higher education in IT or Information Security
  • Certifications such as CEH, PenTest+, or GIAC GPEN
  • Experience with CM/ITSM/Change management processes

Work Rights

Not specified

Tailored Resume

Cover Letter