GFT Technologies

Vulnerability Management Analyst

GFT Technologies

full-time

Posted on:

Location Type: Hybrid

Location: AlphavilleBrazil

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSAzureCloudGoogle Cloud PlatformPythonSplunk

About the role

  • Lead the end-to-end vulnerability management program: discovery, validation, prioritization, reporting and remediation tracking.
  • Define and evolve SLAs, metrics, dashboards and vulnerability remediation guides.
  • Execute risk-based prioritization using CVSS, EPSS, KEV, asset criticality and threat intelligence.
  • Coordinate remediation efforts with Infrastructure, Cloud, DevOps and Application teams.
  • Strengthen cloud security posture (AWS, Azure, GCP) by applying CIS controls and NIST guidelines.
  • Support SIEM/SOAR engineering, including tuning detection rules and security automation.
  • Actively participate in incident response, contributing analysis, containment and resilience improvements.
  • Improve IAM/IAP controls following Zero Trust principles, least privilege and hardening practices.
  • Automate Vulnerability Management tasks using Python, PowerShell and API integrations.
  • Produce executive reports and lead security governance discussions.

Requirements

  • 6 to 10 years or more of experience in Cybersecurity or Vulnerability Management required.
  • Solid knowledge of: CVSS, EPSS, KEV, MITRE ATT&CK, CIS Benchmarks, NIST (800 series).
  • Hands-on experience with vulnerability scanners such as Tenable, Qualys, Trend Vision One, Microsoft Defender, among others.
  • Experience with SIEM/SOAR platforms such as Sentinel, Splunk, Falcon Fusion, Cortex, etc.
  • Knowledge of cloud security (AWS, Azure or GCP) and CSPM/CNAPP solutions.
  • Strong scripting and automation skills (Python, PowerShell or Bash).
  • Solid understanding of IAM, SSO, MFA, PAM and Zero Trust principles.
  • Ability to work cross-functionally, influencing and driving remediation activities.
  • Excellent communication skills, with advanced English mandatory.
Benefits
  • Multi-benefit card – choose how and where to use it.
  • Scholarships for undergraduate, graduate, MBA and language courses.
  • Certification incentive programs.
  • Flexible working hours.
  • Competitive salaries.
  • Annual performance review with structured career plan.
  • Opportunity for international career development.
  • Wellhub and TotalPass.
  • Private pension plan.
  • Childcare assistance.
  • Health insurance.
  • Dental insurance.
  • Life insurance.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
vulnerability managementrisk-based prioritizationCVSSEPSSKEVcloud securityIAMautomationscriptingZero Trust
Soft skills
communicationcross-functional collaborationinfluencingdriving remediation activities