Vulnerability Management Senior Analyst

About Technip Energies Para ser considerado para una entrevista, por favor, asegúrese de que su solicitud se ajusta plenamente a las especificaciones del puesto que se encuentran a continuación. Technip Energies is a leading Engineering & Technology company for the energy transition, with leadership positions in Liquefied Natural Gas (LNG), hydrogen and ethylene as well as growing market positions in blue and green hydrogen, sustainable chemistry and CO2 management. The company benefits from its robust project delivery model supported by extensive technology, products and services offering. Operating in 34 countries, our 15,000 people are fully committed to bringing our clients’ innovative projects to life, breaking boundaries to accelerate the energy transition for a better tomorrow. At Technip Energies, we aim to offer inspiring working experience: tackling some of the most complex technical and engineering challenges in the world in collaboration with a truly global team. We are convinced that the ingredients for success are engaged humans, a strong positive culture, an authentic drive to transform, committed leadership, and inspired talent. The successful implementation of innovations is the sum of creativity, teamwork and the quality of the execution. Technip Energies has a strong commitment to Cyber Security to protect its business, customers and partners. Cyber Security department reports to the Global CISO and is responsible for managing cyber security across the entire organization and subsidiaries. Vulnerability Management Senior Analyst We are in process of increasing the scope of our vulnerability management team and we're looking for a highly skilled and experienced Vulnerability Management Senior Analyst to join our Security Operations team. In this role, you'll be instrumental in protecting our organization by identifying, assessing, analyzing and provide support for mitigating vulnerabilities. The role can be based in our office in Barcelona or Rome with the possibility of hybrid working. Responsibilities Lead and oversee daily vulnerability management operations, including scanning, analysis, and reporting. Conduct in-depth analysis of vulnerability scan results from various tools (e.g., Microsoft Defender Vulnerability Management , Rapid7 InsightVM , Qualys ), prioritize findings, and determine appropriate remediation strategies. Develop and implement robust vulnerability management processes, procedures, and best practices. Collaborate closely with IT, development, and other relevant teams to ensure timely remediation of identified vulnerabilities. Provide expert guidance and technical support to a small team of vulnerability analysts, fostering their growth and skill development. Generate comprehensive reports on vulnerability status, trends, and remediation efforts for various stakeholders, including senior management. Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and industry best practices. Participate in incident response activities as needed, providing expertise on vulnerability-related aspects. Evaluate and recommend new vulnerability management tools and technologies to enhance our security posture. Contribute to the continuous improvement of our overall security program. Qualifications 5+ years of experience in cybersecurity, with a strong focus on vulnerability management. Proven expertise in using and administering leading vulnerability management tools, including: Microsoft Defender Vulnerability Management (or related Microsoft Defender suite components) Rapid7 InsightVM (or other Rapid7 security solutions) Qualys (or other Qualys security solutions) Demonstrable experience leading or mentoring a small team of cybersecurity analysts. Solid understanding of network protocols (TCP/IP, DNS, DHCP, etc.), operating systems (Windows, Linux), and common application architectures. Knowledge of firewalls, IDS/IPS, VPNs, and other network security devices. Experience with Windows (Active Directory, Group Policy, PowerShell scripting) and Linux (bash scripting, system hardening) Strong knowledge of vulnerability assessment methodologies, penetration testing concepts, and security frameworks (e.g., NIST, ISO 27001). Ability to interpret penetration test reports and translate findings into remediation actions Excellent analytical and problem-solving skills with a keen eye for detail. Exceptional communication skills , both written and verbal, with the ability to articulate complex technical information to both technical and non-technical audiences. Excellent written and verbal communication skills in English , with the ability to produce detailed reports, documentation, and collaborate effectively with international teams. Relevant industry certifications such as CISSP, CISM, CompTIA Security+, CEH, or similar are a plus. Bachelor’s degree in computer science , Information Technology, Cybersecurity, or a related field, or equivalent practical experience. xsgfvud As an equal opportunity employer, Technip Energies only considers qualified applicants without regard to race, age, ethnicity, sexual orientation, gender expression, disability, national origin, veteran status, or marital status.