IT Security Officer

About the role

The IT Security Officer will lead the organization’s vulnerability and patch management initiatives, ensuring that external‑facing assets are continuously monitored and protected against emerging threats.

Key responsibilities

• Manage the end‑to‑end vulnerability management lifecycle, from discovery to remediation.
• Oversee patch management processes to keep systems up‑to‑date.
• Utilise attack surface management (ASM) and vulnerability scanning tools such as Tenable, Qualys, and Censys to identify risks.
• Score and prioritise vulnerabilities using common frameworks like CVSS.
• Produce clear technical reports and communicate findings to technical and non‑technical stakeholders.

Required profile

• Bachelor’s degree in Computer Science, Information Security or a related field.
• 5‑7 years of experience in vulnerability management, attack surface management, security operations or IT risk.
• Strong understanding of cybersecurity concepts, especially vulnerability and patch management.
• Professional certifications such as GWEB, OSCP, CRISC, CISA are preferred.
• Excellent communication and interpersonal skills with the ability to multitask and prioritize.

Required skills

• Python programming
• Experience with Tenable
• Experience with Qualys
• Experience with Censys