Manager IT Threat and Vulnerability - Madrid

Can you imagine taking part in the transformation of leading national and international organizations?

At Deloitte, we are committed to making an impact on society, our clients, and our people.

Key Responsibilities

As part of VMS, you will lead a team of operational analysts and will:

• Mature and advance a VM program and strategy that aligns with the evolving threat trends in the industry and organization.
• Manage and lead a team of cybersecurity professionals, fostering a collaborative and innovative work environment.
• Assess, validate, and triage vulnerabilities, working closely with asset owners to ensure timely remediation or approved exception tracking.
• Understand VMS program risk reduction strategy and leverage cadence calls and team bandwidth to prioritize risk reduction efforts.
• Own and manage cadence calls with member firms to provide guidance to firm risk reduction efforts, track progress of risk reduction, track and validate IP ranges for scans, identify asset count discrepancies and review any open port, vulnerability remediation tickets, CISA bulletins, or any ad hoc requirements as necessary.
• Review, assign, and track all ServiceNow tickets to SLAs.
• Create, update and annually review all team documentation and run books.
• Monitor, track and drive all team member training requirements.
• Providing regular reports and updates to senior management on the status of the vulnerability management program, including progress on remediation efforts and any critical vulnerabilities requiring immediate attention.
• Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components.
• Deliver the following day to day support activities.

Required Skills and Experience

• 7+ years of experience in vulnerability management or compliance monitoring
• Strong knowledge of vulnerability management tools and techniques (such as Qualys, Nessus, Nexpose/Rapid7).
• Experience in scanning for vulnerabilities and prioritizing them based on their severity.
• Proven experience leading in a cybersecurity environment.
• In-depth knowledge of information security best practices
• Bachelor’s Degree in computer science, information security, or a related field.
• Professional proficiency in English, both written and spoken.

What is it like to work at Deloitte?

🤩 High-impact projects offering long-term growth and continuous learning opportunities.

☯️ Hybrid and flexible working model, with flexible hours and a healthy balance between remote work and collaboration in our offices or at client sites.

⚽ A positive and collaborative work environment, with team-building activities, cultural and sports events throughout the year.

🧘‍♀️ Holistic wellbeing, supported by our physical, mental, and financial health programs, including on-site medical services.

🤲 Social impact, with access to a wide range of national and international volunteering initiatives and pro bono projects where you can contribute your time and talent.

🗣️ A strong feedback culture and continuous learning, within an inclusive environment that promotes equal opportunities and personalized development plans. You may even see yourself at Deloitte University in Paris.

🤝 Exclusive benefits, including a comprehensive benefits portfolio and a flexible compensation plan.

Next steps:

If what you have read resonates with you, here is what comes next:

• Apply to the position by clicking “Apply now” and completing your profile.
• If your experience matches the role, our Talent team will contact you to get to know you better.

Start your journey with Deloitte. We will guide you through each stage of the process until your onboarding.