Job Information
About the Position
Introduction
Werfen is a growing, family-owned, innovative company founded in 1966 in Barcelona, Spain. We are a worldwide leader in specialized diagnostics in the areas of Hemostasis, Acute Care Diagnostics, Transfusion, Autoimmunity, and Transplant. Through our Original Equipment Manufacturing (OEM) business line, we research, develop, and manufacture customized assays and biomaterials. We operate directly in 30 countries, and in more than 100 territories through distributors. Our Headquarters and Technology Centers are located in the US and Europe, and our workforce is more than 7,000 strong.
Overview
The Vulnerability Management Analyst is responsible for identifying, prioritizing, and helping resolve security weaknesses across our corporate environment. In this role, you will bridge the gap between security discovery and IT remediation by providing the necessary context to address risks before they can be exploited. You will manage both internal and external scanning to ensure that the most critical threats to the business are handled with urgency.
Responsibilities
Key Accountabilities
- Maintain Visibility: Oversee internal and external scanning operations to identify unauthorized systems or unknown internet-facing assets.
- Guide Remediation: Provide IT teams with clear, technical instructions on how to fix identified vulnerabilities.
- Risk Prioritization: Analyze vulnerability data to ensure company resources are focused on the high-risk flaws that pose a direct threat to operations.
- Automate Workflows: Use automation to track the lifecycle of a vulnerability, from initial detection through to final remediation.
- Evaluate Controls: When a patch cannot be applied, assess the effectiveness of other security controls and provide a formal risk assessment.
- Coordinate Updates: Partner with infrastructure teams and the Change Advisory Board to ensure system updates follow a standard, predictable schedule.
- Verify Security: Confirm that defensive security controls are functioning correctly across the network perimeter.
- Performs other duties and responsibilities as assigned.
Networking/Key relationships
- Security Leadership: Support organizational goals by reporting on the current threat environment.
- Service Providers: Coordinate with external partners to manage 24/7 alerts and escalations.
- IT & DevOps: Partner with these teams to ensure security fixes are applied effectively across our systems.
- GRC: Provide the technical assessments needed for formal risk acceptance and compliance approvals.
Qualifications
Minimum Knowledge & Experience for the position:
- Education: Bachelor’s degree in computer science, cybersecurity, or related field.
- Experience: 5+ years of hands-on experience in cybersecurity role.
Skills & Capabilities:
- Strategic Thinking: Align operational goals with business risk and security strategy.
- Technical Depth: Solid understanding of tools, threats, and mitigation techniques.
- Communication: Clear and effective reporting to technical and executive audiences.
- Collaboration: Strong cross-functional engagement and influence.
- Continuous Learning: Commitment to continuous professional development.
Travel requirements:
- Up to 20% of time.
Individual Contributor Core Competencies:
Managing Work
Effectively managing one’s time and resources to ensure that work is completed efficiently.
Emotional Intelligence Essentials
Establishing and sustaining trusting relationships by accurately perceiving and interpreting own and others’ emotions and behavior; leveraging insights to effectively manage own responses so that one’s behavior matches one’s values and delivers intended results.
Building Partnerships
Developing and leveraging relationships within and across work groups, including cross-functional groups, to achieve results.
Decision Making
Identifying and understanding problems and opportunities by gathering, analyzing, and interpreting quantitative and qualitative information; choosing the best course of action by establishing clear decision criteria, generating and evaluating alternatives, and making timely decisions; taking action that is consistent with available facts and constraints and optimizes probable consequences.
Continuous Improvement
Originating action to improve existing conditions and processes; identifying improvement opportunities, generating ideas and implementing solutions.
Continuous Learning
Actively identifying new areas for learning; regularly creating and taking advantage of learning opportunities; using newly gained knowledge and skill on the job and learning through their application.
Work Environment (US only):
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to communicate. Must be able to detect, identify and inspect scientific data. The employee will be required to stand and/or walk up to 8 hours per day and/or sit for up to 8 hours per day. Must be able to use hands to feel objects, including keyboard, telephone and pipettes or other lab equipment. May need to reach with hands and arms, climb stairs, balance, stoop, kneel or crouch.Will be required to talk and hear and have specific vision abilities, including close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus.May occasionally have to lift and/or move up to 25 pounds. The noise level in the work environment will vary but is usually moderate. This position is very active and requires varying levels of mobility.
If you are interested in constantly learning and being challenged on a daily basis, we encourage you to submit your resume or CV.
Werfen appreciates and values diversity. We are an Equal Opportunity/Affirmative Action Employer M/F/D/V.
www.werfen.com
