Enviar candidatura ahora »

Senior- Vulnerability Management & Analytics Analyst

As part of the Global Cybersecurity team, the Vulnerability Curation & Trend Analyst will work with customers to deliver technical assessments against a broad range of services. Working with the Regional Delivery Managers & the Operations organization you will ensure consistency and drive alignment across the Service. The analyst will coordinate with Deloitte Firms for training on remediation through various mediums, including documentation, virtual training and recorded instructional videos.


What will your day-to-day be like?

  • Deliver the curation of vulnerability data, to ensure accurate, actionable remediation guidance can be provided to the global network.
  • Deliver tailored remediation recommendations to global member firms to enhance the organization risk reduction efforts.
  • Support member firms in managing their vulnerability portfolios and escalate key risks and issues to the Regional Delivery Manager.
  • Assists in the continuous improvement of the Vulnerability Management program, including collaboration on design, implementation of key features and functionality.
  • Maintenance of automated vulnerability scanning tools.


What do we expect from you?

  • Minimun of 3 years of experience in the Information Security domain with a focus on vulnerability management. 
  • Professional security management certification strongly desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
  • Knowledge of common infrastructure and web application vulnerabilities and mitigation vulnerability categorizations such as CVE, CVSS, CWE
  • Knowledge of common vulnerability identification & remediation tools, such as Qualys, Kenna, Tenable, RiskIQ, Microsoft SCCM and IBM BigFix
  • Secure DevOps experience a plus.
  • Knowledge of ticketing and tracking tools such as Service Now – Security Operations.
  • Knowledge and understanding of information security legal and regulatory requirements, such as General Data Protection Regulation (GDPR), Cybersecurity Law of the People’s Republic of China Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework.


What is it like to work at Deloitte? 

Working at Deloitte will provide you with the opportunity to participate in the transformation of leading national and international organisations.

This environment will allow you to focus on your personal and professional growth while being surrounded by inspiring individuals. You will also be given the chance to participate in training programmes that will allow you to unlock your full potential.

Thanks to the diversity of our workspace, you will come into contact with a wide array of perspectives, individuals, challenges, and projects.

At Deloitte we are committed to making a positive impact on society, our clients, and you, our employees. 

In order to help us achieve this goal, we have integrated a series of programmes and benefits in our culture that include:


  • A personalised training and career plan (specific/technical, languages, and soft skills).
  • culture of continuous, valuable feedback (upwards and downwards).
  • Mentoring programmes based on your professional category.
  • Volunteering programmes and social action initiatives with a national and international scope (WorldImpact).
  • Cultural programmes and subsidised sports clubs (Deloitte Runners Club, padel, football, volleyball, and many more).
  • Medical insurance and health service based at the office: GPs, nurses, physiotherapy, wellbeing, mental health, etc.
  • Flexibility programme.
  • Flexible remuneration plan and a range of benefits for forming part of Deloitte.


Who are we?

Deloitte is the leading professional services company in Spain and the world. With 22 offices in Spain and 169 offices around the world, we help organisations to address their transformation challenges through a multidisciplinary service approach that can be adapted to a variety of industries.


What is the next step?

  1. If you believe this role is right for you, please click on ‘Apply now’ and complete your profile so we can assess your application.
  2. Our recruitment team will get in touch to find out a bit more about you if they think you could be a good fit for the role.
  3. From this stage onwards we will guide you through the selection process, which could mark the beginning of your Deloitte journey!


Click here to find out more about our Cyber team. Are you ready for the challenge?


What impact will you make?

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Población:  Madrid
Tipo de Puesto:  Profesionales Con Experiencia
Línea de Servicio:  Riesgos
Req Id:  29861

Enviar candidatura ahora »