Vulnerability Management Specialist - Europe based

About Lubrizol  
The Lubrizol Corporation, a Berkshire Hathaway company, is committed to enabling a sustainable future. Our unmatched science unlocks immense possibilities at the molecular level, driving sustainable and measurable results to help the world Move Cleaner, Create Smarter and Live Better. Our solutions are used by people every day, improving billions of lives around the world. 

We value diversity in professional backgrounds and life experiences. By enabling a consistent, unbiased, and transparent recruitment process, Lubrizol seeks to create a positive experience for candidates so we can get to know them at their best. We recognize unique work and life situations and offer flexibility, ensuring our employees feel engaged and fulfilled in every aspect of life. 

Lubrizol is currently seeking a Vulnerability Management Specialist to join our IT organization. In this role, you will define and drive a risk-based management program that addresses vulnerabilities throughout the lifecycle of Lubrizol’s technology assets.

This role can be based in UK, Spain, Belgium, France or Germany where Lubrizol has facilities to accomodate you. You would follow a hybrid working model.

What you will do:

• Be the vulnerability management champion. Help IT and business colleagues understand the issues of vulnerability management and assist in development of appropriate risk-based management strategies
• Throughout the lifecycle management process, collaborate with the larger IT organization to assess and communicate vulnerability risks, develop agreed upon remediation plans and drive, or monitor as may be the case, such plans to ensure successful completion
• Provide ongoing ownership for operational, administrative support, and full product lifecycle management of certain vulnerability management tools (e.g., Rapid7 InsightVM)  
• Develop or support as may be necessary the interfaces between and with vulnerability management tools and systems to achieve maximum business value and a sustainable vulnerability management program
• Work with larger Information Solutions (IS) department to perform tests, uncover and remediate security vulnerabilities to maintain a high-security standard
• Work with IS to identify and implement best practices for IT security
• Understand and evaluate cybersecurity trends and risks
• Participate in penetration testing
• As part of a global information security team, provide insight and recommendations to leadership
• Stay up to date on information technology trends and security standards
• Provide cybersecurity insights and act as an information security advocate to the business
• Other information security activities as needed

What you need:

• Bachelor’s in Information Technology, Computer Science, Cyber Security or Information Security (or equivalent work or military experience)
• GIAC GCIA, GCIH, GCFA or comparable certifications

• Minimum 3 years of experience working with enterprise vulnerability management software/appliances
• Experience tailoring vulnerability risk ratings based on organization’s environment/external threat
• Ability to interpret technical reports on vulnerabilities, exploits, and malware
• Capable of troubleshooting scanner failures at a network and application level
• Successful at communicating and reporting on risk to multiple levels across the organization
• Knowledge and experience with a wide variety of technologies from network, servers, endpoints, IoT, etc.
• Microsoft Windows-based operating systems and collaboration tools
• Ability to resolve issues via undocumented methods via research and investigation 
• Experience in documenting issues and solutions to assist end user/co-worker understanding
• A broad understanding of cyber-security threats, vulnerabilities, controls, and remediation strategies in global enterprise environments
• Knowledge of technologies, systems, and networks as well as typical gaps that could impact the ability of an organization to effectively detect and respond to cyber attacks
• Programing skills necessary to build and maintain interfaces between security tools or automate security tasks

#LI-MC1

#LI-hybrid

If you’re interested in the position, we encourage you to apply. Lubrizol is always looking for candidates who embody our cultural beliefs in everything they do. If you’re All In, Lead Decisively, Take Action, Think External, and can Be Courageous, Lubrizol could be the place for you.