Inetum2
Vulnerability Management Specialist / 1
Job description
We are seeking a Vulnerability Management Specialist to join our Information Security team. The candidate will own and continuously improve the vulnerability management process, perform risk-based prioritization of vulnerabilities, and collaborate closely with IT and business units. This role requires a proactive individual with strong technical security expertise, excellent communication skills, and the ability to translate technical risks into business-relevant messages.
Key responsibilities:
Vulnerability management:
- Own and continuously improve the vulnerability management process.
- Perform risk-based prioritization of vulnerabilities in close collaboration with IT and business units.
- Monitor remediation SLAs and track critical findings through to closure.
- Establish and maintain reporting, KPIs, and management dashboards.
- Coordinate vulnerability scans and assess relevant security advisories.
Technical security (core responsibilities):
- Analyze and secure IT systems, networks, and applications.
- Design, configure, and continuously optimize automated vulnerability scanning across heterogeneous environments.
- Validate scan results to eliminate false positives and perform risk assessments using CVSS v3/v4, incorporating internal business impact context.
- Support implementation and enhancement of technical security controls (e.g., system hardening, access control, network security).
- Contribute to security assessments, penetration testing, and technical reviews.
- Support integration of security into development and operations processes (DevSecOps).
- Analyze security incidents and derive improvement measures.
- Assist in the selection, implementation, and optimization of security tools.
Governance & collaboration:
- Collaborate with Risk, Compliance, and IT teams.
- Support audits and regulatory requirements (e.g., ISO 27001, NIS2).
- Promote security best practices and awareness across the organization.
Senior-level communication & presentation capabilities:
- Ability to translate technical risks into clear, business-relevant messages.
- Experience preparing and delivering concise management presentations and reports.
- Strong stakeholder communication skills, including interaction with senior leadership.
- Capability to provide clear, actionable recommendations for decision-making.
- Confident communication in management and audit contexts.
Must have requirements:
- Degree in Computer Science, Information Security, or comparable qualification.
- Professional experience in Information Security / IT Security.
- Solid experience in Vulnerability Management and working with scanning tools (governance, operations, configuration, monitoring, reporting).
- Strong understanding of IT infrastructures (networks, operating systems, ideally cloud).
- Practical knowledge of technical security controls and implementations.
- Fluent English and Polish (at least B2 level)
Nice to have requirements:
- Experience with security tools (e.g., SIEM, EDR).
- Knowledge of automation / scripting.
- Experience in DevSecOps or Cloud Security.
- Security certifications (e.g., CEH, CISSP, CompTIA Security+).
Hybrid work model: 3 days from the office, 2 days of home office.
Office locations: Warszawa, Lublin, Poznań
On call duty
Additional Information
We hereby inform you that Inetum Polska sp. z o.o. has implemented an internal reporting (whistleblowing) procedure. The content of the procedure and the possibility to submit an internal report are available at:


