Vulnerability Management Consultant - Task Force (M/F)

Key information

  • Publication date:16 September 2025
  • Workload:100%
  • Place of work:Le Brassus

Company Description

Darest Informatic SA has been offering its services to SMEs and large companies since its establishment in 1978. Our expertise is divided into 3 activities: IT engineering, equipment supply, and personnel delegation.

For one of our prestigious clients in the watchmaking sector, we are looking for a specialized consultant capable of identifying, prioritizing, and coordinating the correction of vulnerabilities, in collaboration with IT, Security, and Business teams. This role is operations and management oriented.

Job Description

  • Identify and assess vulnerabilities on systems, applications, and infrastructures.
  • Prioritize vulnerabilities based on their criticality and potential impact.
  • Manage and coordinate remediation actions with IT teams (infrastructure, application, network) and external providers.
  • Ensure cross-functional project management of remediation (planning, action tracking, reporting).
  • Contribute to the management and facilitation of bug bounty programs.
  • Maintain the Vulnerability Operation Center (VOC) in operational condition.
  • Provide advice and decision support regarding the application of patches and countermeasures.
  • Document and report remediation progress to cybersecurity management.
  • Participate in the evolution of vulnerability detection and tracking tools.

Expected Deliverables

  • Detailed reports of identified vulnerabilities (criticality, remediation recommendations).
  • Minutes of remediation implementation including:
    • List of actions taken.
    • Proofs of correction.
    • Follow-up procedures.
  • Monitoring and reduction of technical debt related to vulnerabilities.
  • Automation of an information flow on critical vulnerabilities.
  • Regular assessment of the attack surface and potential attack vectors.

Qualifications

  • ITIL V4 certification required.
  • Security certification appreciated (CISSP, CEH, etc.).
  • Proven experience in security project management and cross-functional coordination.
  • Experience in a multinational context.
  • Clean criminal record required.
  • French and English: minimum B2 level.
  • Rigor, organizational skills, strong communication and teamwork abilities.

Technical Skills

  • Expertise in vulnerability management and remediation management.
  • Good understanding of IT environments (systems, networks, applications).
  • Mastery of security solutions: Tenable Nessus, Qualys, Snyk, SonarQube, ServiceNow SecOps Vulnerability Response, OpenCVE.
  • Knowledge of bug bounty practices and penetration testing.

Additional Information

  • Position based in the Vallée de Joux
  • Start: as soon as possible

Categories:

Admin. / HR / Consulting / CEO, Consultancy / Company Development

Salary Check

Take advantage of the jobs.ch service to find out how much you earn as Consultant

Salary for Consultant