Vulnerability Management Analyst - remote from Slovakia | MERCK Group

REMOTE ROLE WITHIN SLOVAKIA

Your role: This role performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities. The main tasks in this role are to analyze organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives. You will also prepare reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions. Additionally, you will perform technical evaluation of risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications).

Who you are

• ​Experience in managing and configuring scanning tools (Tenable, Qualys, etc.).
• ​Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
• ​Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
• Knowledge of application vulnerabilities.
  
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  
• Knowledge of what constitutes a network attack and a network attack’s relationship to both threats and vulnerabilities.
  
• Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
  
• Skill in using network analysis tools to identify vulnerabilities (e.g., fuzzing, nmap, etc.).
• Skill in conducting application vulnerability assessments.

What we offer: We are curious minds that come from a broad range of backgrounds, perspectives, and life experiences. We believe that this variety drives excellence and innovation, strengthening our ability to lead in science and technology. We are committed to creating access and opportunities for all to develop and grow at your own pace. Join us in building a culture of inclusion and belonging that impacts millions and empowers everyone to work their magic and champion human progress!

​Apply now and become a part of a team that is dedicated to Sparking Discovery and Elevating Humanity!

​
​Salary starts at 2.500 EUR and is dependent upon relevant experience.