Devoteam Cyber Trust | Vulnerability Assessment Manager | Mobility Sector Lisboa

Devoteam Cyber Trust | Vulnerability Assessment Manager | Mobility Sector
Lisboa
Lisboa, Lisboa, Portugal

Devoteam Cyber Trust | Vulnerability Assessment Manager | Mobility Sector

• Full-time
• Contract type: Permanent contract

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an
-
- end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and
- sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing
- edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.

The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Responsibilities

• A cybersecurity professional with expertise in vulnerability assessment, risk analysis, and security mitigation strategies.
• Skilled in identifying, prioritizing, and advising remediation on security weaknesses across IT infrastructure, applications, and cloud environments.
• Strong background in coordinating security assessments, collaborating with internal and external teams, and ensuring compliance with industry standards.
• Capable of providing clear reporting and insights to enhance the applications’ overall cybersecurity.

Key Tasks

• Vulnerability Management Strategy – Define and oversee App
  Sec processes.
• Risk-Based Prioritisation – Assess and prioritise vulnerabilities effectively.
• Secure SDLC & Dev
  Sec
  Ops – Embed security in development workflows.
• Tooling & Automation – Implement and manage SAST, DAST, and dependency scanning.
• Policy & Governance – Develop security standards and best practices.
• Stakeholder Collaboration – Align security efforts with engineering and Dev
  Ops.
• Metrics & Reporting – Track remediation progress and report risks.

Certifications & Training

• Certified Information Systems Security Professional (CISSP)

Devoteam Group works for equal opportunities, promoting its employees based on merit and actively fights against all forms of discrimination. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All of our vacancies are open to people with disabilities.