Description: What do we expect from you? * Ability to analyze vulnerabilities with a risk-oriented perspective, considering technical context and business impact. * Autonomy to prioritize, guide remediation efforts, and support decisions related to risk and exceptions. * Strong communication skills to translate technical findings into clear information for diverse audiences. * Excellent organizational and time management skills; * Ability to work independently and collaboratively in teams; * Analytical mindset with attention to detail. Additional/Desirable Information * Practical knowledge of programming languages such as Python for script development and test automation; * Proficiency in frameworks (CVSS, EPSS, NIST, ENISA). * Multicloud, container, and code analysis experience. * Certifications such as CompTIA Security+ or hands-on offensive security experience are advantageous. What will your day-to-day look like? * End-to-end involvement in the vulnerability lifecycle: discovery, validation, classification, prioritization, remediation, retesting, and closure. * Ensure program health and scan coverage aligned with company assets. * Support defining and evolving the vulnerability strategy. * Correlate vulnerabilities with threat intelligence and business context. * Integrate controls to enable DevSecOps process integration. * Operate and enhance the use of Vulnerability Management tools, such as Tenable (infrastructure, cloud, and web) and Orca Security (CSPM/CNAPP). * Support integration of tools with ITSM, CMDB, and executive dashboards, ensuring data quality and traceability. * Contribute to defining intelligent prioritization rules (e.g., exploitability, active threats, business criticality). * Produce strategic reports. 2512180202551924870