Vulnerability Analyst

Trasys International offers IT Consulting jobs at the European Institutions and International Organizations.

For a project at the European Commission in Luxembourg, Trasys International is looking for a Vulnerability Analyst in charge of performing penetration tests, vulnerability assessments and technical security compliance checks.

Your main responsibilities:

The jobholder will participate in the definition, improvement and delivery of the Security Assurance (SA) services, specifically in regard to infrastructure security testing:

• Define and/or improve the vulnerability assessment procedure for on-premises and cloud environments (AWS, Azure, IBM, OVH) and for all layers (network, host, storage, apps)
• Define and/or improve the remediation strategy for on-premises and cloud environments, and propose proactive security controls and hardened configurations
• Adopt the corporate vulnerability management process, including risk calculation, to cloud environments
• Participate in regular infrastructure security testing activities:
• Liaise with internal customers and receive information about upcoming security tests
• Prepare and execute the tests, if performed internally
• Take part in the preparation of the tests, and supervise their execution, if outsourced
• Analyse and consolidate the results of the security testing
• Propose recommendations for remediating the identified vulnerabilities
• Consolidate the results of the test together with the proposed remediation in a coherent report
• Management and follow-up of customer requests related to infrastructure security testing
• Participation in user, service, and project meetings.

Requirements

• You have a secondary education attested by a diploma;
• You have at least 5 years of experience in similar tasks;
• Minimum 3 years of experience in infrastructure security testing activities
• Minimum 1 year of experience in cloud security
• Solid understanding of services delivered by the main cloud service providers
• Solid understanding of vulnerability assessment of all layers (network, host, apps)
• Knowledge of Tenable.sc, Tenable.io or other vulnerability management platform
• CCSP or CCSK training or certification would be a strong advantage
• AWS Security Specialty or Azure Security Engineer training or certification would be a strong advantage
• Knowledge of ServiceNow platform, especially the Security Operations / Vulnerability Response module would be an advantage
• Knowledge of PRINCE2, PMBOK or PM2, through relevant training or certification, would be an advantage
• Knowledge of ITIL or ISO20000, through relevant training or certification, would be an advantage.
• Knowledge of wiki, collaborative sites and social networks
• Excellent communication / writing skills mainly in English language, with French/German being a strong advantage
• Ability to give presentations and to report to different stakeholders
• Capability of working in an international/multi-cultural environment, rapid self-starting capability and experience in working in team; leadership capability.

Nationality and Security Clearance

As a Personal Security Clearance of level "EU SECRET/SECRET EU" might be requested for this profile, only candidates with a valid EU citizenship will be taken into consideration.

We are TRASYS International, NRB Group, an ICT company with over 30 years of a successful track record working with European Institutions and Agencies, offering IT consulting, solutions and services. Our Mission is to help our clients keep up with the challenges of digital transformation by providing the right talent at the right time for the right job. To this end, we are constantly looking for talented professionals who are interested in working on challenging international projects and able to deliver high-quality results within multicultural environments. Our services include (but are not limited to) modernisation solutions, digital workspaces, cloud technologies and IT security. Our Headquarters are in Brussels and we have active accounts and offices across Europe (i.e. Luxembourg, Amsterdam, Athens, Stockholm, Geneva).