Information Security - Vulnerability Management Consultant

IBM Warsaw, Mazowieckie

About the Job

The Vulnerability Management Consultant will work across multiple operating environments, assets, products, and services. The person in this role will maintain and optimize existing vulnerability management program operations while supporting vulnerability management systems, initiatives, integration, and technical vulnerability assessment and remediation.
The Vulnerability Management Consultant will drive appropriate actions at all levels of the organization including executive management. Additionally, the person will define the prioritization of remediation activities, optimizing the remediation efforts in a dynamic environment.

Your Role and Responsibilities
Role overview:

- Oversee and support the development of vulnerability management programmes, initiatives, integration, and technical assessment.
- Direct and/or perform on-going vulnerability assessments on applications and networks and systems. Direct assessment efforts in a prioritized fashion, seeking breadth and depth of coverage where appropriate.
- Partner with teams who implement technology and achieve methods for aligning to their processes and reduce vulnerabilities.
- Enhance technology and/or process to ensure accurate and up to date inventory of critical infrastructure and applications are in place.

Core Responsibilities:

- Drive the ongoing implementation and operation of the Vulnerability management program
- Plan and carry out vulnerability scan campaigns. Create reports and present to the client(including on occasions executive management) with factual documentation of issues identified and clear recommendation for mitigation of found vulnerabilities
- Assess, document, and validate the vulnerability management practices across the business to ensure compliance to company policy and standards are met
- Assess possible risks to proposed changes to the environment, and if needed recommend an alternative solution, or mitigating security controls
- Assess possible risks to proposed changes to the environment, and if needed recommend alternative solution, or mitigating security controls

Required Technical and Professional Expertise
- Minimum 3 years Information Security experience, focused on risk analysis, identification, and vulnerability assessment
- Degree in Computer Science or a related field is desirable
- Understanding of Security and Infrastructure Architecture/Technologies: including but not limited to Routers, Firewalls, IDS, PKI, VPN, Application Security, Vulnerability Scanners, Windows and Unix Systems Security.


- Results oriented cross-functional leadership success partnering with internal and external stakeholders
- Outstanding written, verbal, and presentation communications skills.
- Executional excellence – consistently deliver programs to successful outcomes in a fast-moving environment
- Excellent interpersonal communication, project management, and leadership skills. Must be able to communicate effectively with all levels of personnel
- English – working proficiency

Preferred Technical and Professional Expertise
- Previous experience with Qualys, Tenable, Rapid7 Scanners
- Vulnerability Management Experience
- Ability to adapt to a high paced work environment and to handle multiple tasks simultaneously and follow through on tasks to completion
- Author/utilize tools/scripts/APIs to automate work, manually validate or test vulnerabilities

Optional Certifications:

- One or more of the following professional certifications: CISSP, CISM, CISA, CEH or equivalent, or SANS. Preferred Qualys / Tenable Certified Professional

About Business Unit
IBM’s Cloud and Cognitive software business is committed to bringing the power of IBM’s Cloud and Watson/AI technologies to life for our clients and ecosystem partners around the world. IBM provides you with the most comprehensive and consistent approach to development, security and operations across hybrid environments—with complete software solutions for business and IT operations, development, data science, security, and management. Our experts and software capabilities help organizations develop applications once and deploy them anywhere, integrate security across the breadth of their IT estate, and automate operations with management visibility. With IBM, you also have access to new skills and methods, governance and management approaches, and a deep ecosystem of industry experts and partners.

Your Life @ IBM
What matters to you when you’re looking for your next career challenge?

Maybe you want to get involved in work that really changes the world? What about somewhere with incredible and diverse career and development opportunities – where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust – where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.

Impact. Inclusion. Infinite Experiences. Do your best work ever.

About IBM
IBM’s greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.

Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we’re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business.

At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it’s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Location Statement
For additional information about location requirements, please discuss with the recruiter following submission of your application.

Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.