This role is essential in strengthening and maintaining the security posture of the company's network infrastructure. It focuses on the timely and effective execution of remediation plans to address identified network vulnerabilities. Collaborating closely with engineering teams, network subject matter experts (SMEs), and other stakeholders, this position ensures the successful translation of security strategies into actionable outcomes.

The role involves applying patches, performing both minor and major software upgrades, and deploying compensating controls across a variety of network devices, such as firewalls, routers, switches, and load balancers. These efforts are essential to maintaining a secure and efficient network environment that aligns with business goals.

Additionally, the role includes maintaining detailed documentation of remediation activities and providing regular updates on progress and network security status. This role contributes to ongoing improvement efforts, such as the security hardening of network devices.

You will focus on identifying, evaluating, and remediating network vulnerabilities and configuration issues. Your expertise in CVEs, CIS benchmarks, and network products will be essential in maintaining the security and integrity of our network infrastructure.

Responsibilities:

• Plan and coordinate remediation: Manage vulnerability remediation plans, ensuring alignment with organizational priorities and risk appetite. Coordinate cross-functional teams to ensure timely and effective execution of remediation tasks (participate in TSOT meetings).

• Communication and reporting: Provide regular updates to stakeholders on vulnerability status, risk levels, and remediation progress. Present vulnerability management metrics and trends in a clear, concise manner.

• Assess the vulnerabilities, consolidate and perform initial triage.

• Risk Management: Prioritize vulnerabilities based on risk, leveraging threat intelligence and business impact analysis.

• Review the assessment of vulnerabilities performed by the ENG team and providing feedback or recommendations if needed.

• Review the remediation plan and provide feedback or recommendations if needed.

• Remediation oversight: Monitor and ensure the timely execution of remediation activities. Address and resolve challenges that arise during remediation.

• After remediation, review the root cause and provide recommendations for improvement if needed.

• Ensure compliance and governance of the remediation process: Ensure vulnerability management practices comply with industry standards. Regularly update vulnerability management policies to align with organizational goals.

• Continuous Improvement: Identify the underlying causes of vulnerabilities, such as weak patch management processes and lack of secure configuration and recommend improvements. Drive automation initiatives to streamline vulnerability remediation.

• Implement remediation actions, including performing both minor and major software upgrades and applying compensating controls to mitigate identified vulnerabilities

• Manage vulnerability tickets by initiating requests, overseeing approval processes, and effectively communicating changes to relevant stakeholders

• Ensure the timely remediation of vulnerabilities to maintain the security and integrity of the network infrastructure

• Enhance security by working on the configuration hardening of network devices, thereby reducing exposure to potential threats

• Provide comprehensive reports on remediation activities and network security status

• Collaborate with other teams to ensure efficient vulnerability management and remediation efforts

• Configuration management.

• Vulnerability remediation automation.

Education:

• Bachelor’s degree or technical institute degree/certificate in a relevant field or equivalent work experience

Work experience:

• Vulnerability remediation automation.

• InfoBlox DNS/DHCP Management: Experience with InfoBlox DNS/DHCP management.

• Configuration Management Tools: Experience with Ansible or other configuration management tools.

• Logging and Observability Tools: Experience in using modern logging and observability tools such as Elastic and New Relic.

• Coding/Scripting: Experience using Python for coding/scripting.

• Proven expertise in managing core and edge network products such as Palo Alto, Citrix NetScaler, Aruba, Velocloud, and Cisco ACI.

Skills and Knowledge:

• Strong understanding of general network technologies (TCP, UDP, DNS, OSPF, BGP, VLANs, VPNs, etc.)

• Strong understanding of CVEs, CIS benchmarks, and other key terms.

• Relevant certifications in network security and management are required.

• Good analytical and problem-solving skills.

• Good knowledge of general IT Infrastructure and ITSM.

• Strong critical thinking and analytical abilities

• Vulnerability remediation automation.

• Attention to detail and accuracy in execution

• Interpersonal communication

• Problem solving

• Efficient time management

Preferred certifications:

• Cisco Certified Network Professional (CCNP)

• Palo Alto Networks Certified Network Security Engineer (PCNSE)

Salary: 5,681.01 - 8,115.79 eur gross/month

What Cencora offers

We offer a competitive annual bonus, life insurance from Day 1, a best-in-class health insurance package, and up to 6 fully paid benefit days a year. As a Cencora employee, you have the benefit of our referral bonus scheme, our boundless learning opportunities and our global Employee Assistance Program. We have a wonderful office location in Quadrum, equipped with everything you need for a small break at work and fresh snacks at all times. Become part of our purpose-driven, multicultural team now and help us create healthier futures

Full time

Affiliated Companies:

Affiliated Companies: World Courier (Lithuania) UAB