IT Security Specialist Vulnerability Management Operations

As an IT Security Specialist in Vulnerability Operations, you will play a critical hands-on role in identifying and managing security risks across our global IT landscape. You will oversee vulnerability scanning activities, ensure comprehensive coverage of in-scope environments, and work closely with IT service owners, application teams, and security partners to drive timely remediation.
In return for your analytical mindset and passion for vulnerability management, you will have the opportunity to shape and enhance our global vulnerability management framework, collaborate with international stakeholders, and directly strengthen the resilience of systems that support millions of people worldwide.

More about the role:

• Manage and monitor vulnerability scanning activities (scan, analyze, disposition) across global environments
• Coordinate remediation efforts with application and technology owners, ensuring prioritized backlog reduction
• Provide compliance scanning and process support in line with defined guidelines
• Deliver training and guidance on vulnerability management best practices to relevant stakeholders
• Support critical vulnerability resolution phases to ensure effective and timely remediation
• Enhance and continuously improve vulnerability management processes, tooling, and reporting
• Compile regular vulnerability status reports and escalate critical risks to senior management

More about you:

Essential:

• Degree in Computer Science or equivalent practical experience
• Strong understanding of IT infrastructure, attack and defense techniques, and vulnerability management
• Hands-on experience with vulnerability management tools such as Nessus or Qualys
• Knowledge of OWASP, NIST, and CIS benchmarks
• Understanding of TCP/IP, DNS, VPNs, and major operating systems (Windows, Linux, Unix, macOS)
• Experience working with cloud services (IaaS, PaaS, SaaS)
• Strong written and verbal communication skills in English

Preferred:

• Professional security certifications (e.g. GIAC/GCIH, CISA, CompTIA Security+, CEH, CCNA)
• CISSP or MCSE
• Experience with web application security tools such as Burp Suite or OWASP ZAP
• Familiarity with collaboration and workflow tools (e.g. JIRA, Confluence, Slack, Microsoft Teams)
• Experience managing vendors and vulnerability management service providers

You are highly motivated, structured, and quality-focused, with strong analytical and logical problem-solving skills. You enjoy tracking vulnerabilities from detection through remediation and thrive in a proactive, continuously improving environment. You can clearly communicate technical risks in both business and technical language and build trusted relationships across teams.

More about what we offer

As one of the world’s leading hearing care providers headquartered in Switzerland, we’re committed to building an inclusive culture. We want to create an environment where you can balance a successful career with your commitments and interests outside of work, through our flexible hybrid working model. We offer a wide range of training opportunities for both your professional and personal development, and there are exceptional growth opportunities with individual development plans.

For this vacancy only direct applications will be considered.