Cybersecurity Analyst – External Vulnerability & Attack Surface Management

We are looking for a Cybersecurity Analyst to join an international Assurance & Trust team focused on External Vulnerability Scanning and Attack Surface Management.

You will be part of a dynamic and highly specialized cybersecurity team, working in close collaboration with international stakeholders, ensuring the protection of internet-exposed assets and contributing to the continuous improvement of cybersecurity maturity.

Key Responsibilities

• Perform vulnerability scans on all internet-exposed assets
• Manage and monitor security ratings for external-facing assets
• Maintain relationships with cybersecurity software and SaaS solution vendors
• Manage SaaS platforms for vulnerability scanning and security scoring
• Build vulnerability and security posture reports and present them to senior cybersecurity stakeholders
• Contribute to the evaluation and onboarding of new cybersecurity solutions
• Act as the main point of contact in Portugal for the onshore cybersecurity team

Main Tasks

• Serve as the primary External Attack Surface Management point of contact for assigned entities
• Collaborate with solution providers to resolve service issues (support ticket management)
• Produce and improve vulnerability and security rating reports
• Analyze, assess, and report cybersecurity risks and their impact to CISOs
• Build and analyze reports related to vulnerabilities and security ratings
• Manage administrative tasks on vulnerability scanning platforms (asset management, user access, configuration)

Technical Skills

• Strong understanding of IT systems, data, and cybersecurity risks
• Solid experience in Vulnerability Management and Security Ratings
• Knowledge of External Attack Surface Management
• Offensive Security skills, including proficiency in hacking techniques and audit methodologies
• Ability to analyze vulnerabilities, assess risk, and communicate findings clearly to stakeholders

Language Skills

• English – mandatory (advanced / fluent)

Hybrid Work: 2/3x in the office (Lisbon/Porto)