Browse
···
Log in / Register
**WHAT IS TELEFONICA TECH?** Telefónica Tech is the leading digital transformation company within the Telefónica Group. We offer a comprehensive portfolio of integrated technological services and solutions in Cybersecurity, Cloud, IoT, Big Data, Artificial Intelligence, and Blockchain, supporting our clients throughout their digital transformation. We are a team of over 6,200 courageous professionals working daily from various locations around the world to achieve excellence through transparent leadership and a strong team spirit. If you identify with our core values, we look forward to meeting you! www.telefonicatech.com **WHAT DOES OUR TEAM DO?** Within the **Offensive Security** unit of Telefónica Cybersecurity & Cloud Tech, our goal is to provide organizations with an accurate and realistic security posture, enabling us to help our clients discover critical vulnerabilities in their environments and assist in prioritizing and addressing risks based on exploitability and impact. Our team manages vulnerabilities across systems, networks, and applications for organizations. We identify, assess, and prioritize potential security threats and weaknesses to ensure all digital assets are protected against possible risks. We use specialized tools and testing methods to detect vulnerabilities, analyze their severity levels, and work on mitigation through patches, security configurations, and other preventive measures. **HOW WILL YOUR DAY TO DAY LOOK LIKE?** Your main mission will be managing the vulnerability lifecycle. Your day-to-day responsibilities will include: * Onboarding and provisioning of assets into vulnerability management tools. * Continuous analysis of reported vulnerabilities to evaluate actual likelihood and impact, adjusting criticality/severity accordingly, as well as reviewing and eliminating false positives. * Strong knowledge of Qualys as a vulnerability management tool. * Support in defining prioritized remediation plans. * Generation of monthly reports and KPIs. * Deployment of vulnerability scanning sensors. * Review and optimization of scanning profiles. * Opening and managing client requests via ticketing platforms. * Service follow-up meetings. * Technical support in equipment management. * Performing automations through scripts. * Ability to design and integrate solutions within the vulnerability lifecycle. Identify automation opportunities within the vulnerability management lifecycle using scripts or orchestration platforms. * **AND FOR THIS, WE BELIEVE IT WOULD BE IDEAL IF YOU HAD…** **Experience** * Minimum 2\-4 years of experience in vulnerability lifecycle management projects. * Experience in automation (Python, PowerShell, APIs). * Experience with ticketing platforms such as Jira or ServiceNow. * Experience with Qualys modules including CSAM, True Risk, VDMR, PM, TC, PCI, etc. * Experience collaborating with vendor tools, particularly Qualys, to resolve incidents and evaluate new updates or module additions. **Education** * University degree, medium/higher vocational training qualification, or equivalent professional experience. Desirable: Possession of certifications related to the Qualys vendor. * + **Technical Skills*** Solid technical knowledge of Qualys as a vulnerability scanning tool. Knowledge of CI/CD security integrations and DevSecOps practices. * * Programming and scripting languages such as Python, bash, PowerShell, etc. Ability to interpret scan results, risk levels, and provide recommendations for vulnerability remediation. * **The skills that would best fit the team and project are:** * Passionate about technology and offensive security. * Creative with a hacker mindset. * Proactive with the ability to take on challenges. * Capable of communicating technically complex ideas to non-technical audiences. * Teamwork skills. Leadership. * **LANGUAGES** * Required: + Native Spanish. + English B2 **WHAT DO WE OFFER?** • Work-life balance and flexible working hours. * Continuous training and certifications. * Hybrid remote working model. * Attractive social benefits package. * Excellent dynamic and multidisciplinary work environment. * Volunteering programs. **\#WeAreDiverse \#WePromoteEquality** We firmly believe that diverse and inclusive teams are more innovative, transformative, and achieve better results. Therefore, we promote and guarantee inclusion for all individuals regardless of gender, age, sexual orientation and identity, culture, disability, or any other condition. We want to meet you!
