Vulnerability Management Specialist

Company Description

Founded and headquartered in Switzerland, Avaloq is continuously expanding its global footprint with around 2,500 colleagues in 12 countries, and more than 160 clients in 35 countries. We are an industry-leading provider of wealth management technology and services for financial institutions around the world, including private banks and wealth managers, investment managers, as well as retail and neo banks. Our research led approach and continual innovation is powered by the passion and creativity of our colleagues.
We are always looking for talented people to join us on our mission to orchestrate the financial ecosystem and democratize access to wealth management. Avaloq offers the opportunity to work closely with some of the world’s leading financial institutions as we jointly develop and shape careers. Championing a collaborative, supportive and flexible work environment empowers our colleagues to reach their full potential.

Job Description

We are seeking a highly skilled and experienced Vulnerability Management Specialist to join our SecOps team. The Vulnerability Management Specialist will be responsible for conducting regular vulnerability assessments, analysing scan results, prioritizing vulnerabilities, and working collaboratively with stakeholders to remediate identified security weaknesses. The ideal candidate will have a strong technical background in vulnerability, hands-on experience with vulnerability scanning tools, and the ability to communicate effectively with technical and non-technical audiences.

Your key tasks 

• Conduct regular vulnerability assessments and scans across systems, applications, and network infrastructure.
• Analyse scan results and prioritize vulnerabilities based on severity, potential impact, and exploitability.
• Collaborate with system administrators, developers, and other stakeholders to remediate identified vulnerabilities in a timely manner.
• Develop and maintain vulnerability management processes, procedures, and documentation.
• Monitor industry sources for emerging threats and vulnerabilities and assess their potential impact on the organization.
• Provide guidance and recommendations to improve security posture and mitigate risks associated with identified vulnerabilities.
• Participate in incident response activities as needed, particularly in assessing the impact of vulnerabilities exploited during security incidents.
• Communicate effectively with stakeholders, including technical teams, management, and external auditors, to provide updates on vulnerability management activities and findings.
• Stay abreast of the latest trends, tools, and best practices in vulnerability management and cybersecurity.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 3 to 5 years of experience conducting vulnerability assessments and scans using tools such as Nessus, Qualys, Tenable Or Prisma.
• Knowledge of common vulnerabilities and exposure (CVE) databases, vulnerability scoring systems (e.g., CVSS), and common attack vectors.
• Familiarity with security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework, and PCI DSS.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Understanding of network protocols, operating systems, and web applications.

It would be a real bonus if you have: 

• Certification(s) in vulnerability assessment and management (e.g., CVE, CVSS, CISSP, CEH) preferred.
• Experience with scripting and automation using languages such as Python, PowerShell, or Bash is a plus.

Additional Information

We realize that managing work life balance is a challenge we all face in our daily lives and in order to support with this we are pleased to offer hybrid and flexible working for most of our Avaloqers to maintain work life balance and still continue our fantastic Avaloq culture in our global offices. 

In Avaloq we are proud to embrace diversity and understand the success of our business is built on the power of different opinions, we are whole heartedly committed to fostering an equal opportunity environment and inclusive culture where you can be your true authentic self. 

We hire, compensate and promote regardless of origin, age, gender identity, sexual orientation or any other fantastic traits that make us all unique, we have done our best to write this advert in an inclusive and neutral way. 

Please be aware that we will not accept speculative CV submissions for any of our roles from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations.  

#LI-Hybrid