Vulnerability Management Consultant - Task Force (M/F)

Key information

  • Publication date:16 September 2025
  • Workload:100%
  • Place of work:L'Abbaye

Job summary

Darest Informatic SA, established in 1978, serves SMEs and large enterprises. Join a dynamic team focused on IT engineering, equipment supply, and personnel delegation.

Tasks

  • Identify and assess vulnerabilities in systems and applications.
  • Prioritize vulnerabilities based on criticality and potential impact.
  • Coordinate remediation actions with IT and external teams.

Skills

  • Must have ITIL V4 certification and proven security project management experience.
  • Expertise in vulnerability management and remediation oversight.
  • Familiarity with security solutions like Tenable Nessus and Qualys.

Is this helpful?

Company Description

Darest Informatic SA has been offering its services to SMEs and large companies since its establishment in 1978. Our expertise is divided into 3 activities: IT engineering, equipment supply, and personnel delegation.

For one of our prestigious clients in the watchmaking sector, we are looking for a specialized consultant capable of identifying, prioritizing, and coordinating the correction of vulnerabilities, in collaboration with IT, Security, and Business teams. This role is operations and management oriented.

Job Description

  • Identify and assess vulnerabilities on systems, applications, and infrastructures.
  • Prioritize vulnerabilities based on their criticality and potential impact.
  • Manage and coordinate remediation actions with IT teams (infrastructure, application, network) and external providers.
  • Ensure cross-functional project management of remediation (planning, action tracking, reporting).
  • Contribute to the management and facilitation of bug bounty programs.
  • Maintain the Vulnerability Operation Center (VOC) in operational condition.
  • Provide advice and decision support regarding the application of patches and countermeasures.
  • Document and report remediation progress to cybersecurity management.
  • Participate in the evolution of vulnerability detection and tracking tools.

Expected Deliverables

  • Detailed reports of identified vulnerabilities (criticality, remediation recommendations).
  • Minutes of remediation implementation including:
    • List of actions taken.
    • Proofs of correction.
    • Follow-up procedures.
  • Monitoring and reduction of technical debt related to vulnerabilities.
  • Automation of an information flow on critical vulnerabilities.
  • Regular assessment of the attack surface and potential attack vectors.

Qualifications

  • ITIL V4 certification required.
  • Security certification appreciated (CISSP, CEH, etc.).
  • Proven experience in security project management and cross-functional coordination.
  • Experience in a multinational context.
  • Clean criminal record required.
  • French and English: minimum B2 level.
  • Rigor, organizational skills, strong communication and teamwork abilities.

Technical Skills

  • Expertise in vulnerability management and remediation management.
  • Good understanding of IT environments (systems, networks, applications).
  • Mastery of security solutions: Tenable Nessus, Qualys, Snyk, SonarQube, ServiceNow SecOps Vulnerability Response, OpenCVE.
  • Knowledge of bug bounty practices and penetration testing.

Additional Information

  • Position based in the Vallée de Joux
  • Start: as soon as possible

Salary Check

Take advantage of the jobup.ch service to find out how if you get paid what you deserve.

Check your salary