Infrastructure Security Analyst - Vulnerability Management

Established in 2004, we are a tech pioneer offering world-class adult entertainment and games on some of the internet’s safest and most popular platforms. With the support of an international team of dynamic and collaborative innovators, we are on a mission to enable safe user experiences and empower our communities by celebrating diversity, inclusion, and expression — all while maintaining robust trust-and-safety protocols.

We embrace the best of both worlds! Local talent can thrive in our collaborative office space with the flexibility of a hybrid work environment, while remote team members play an integral role in shaping our dynamic culture from afar. We have offices in Montreal (Quebec), Austin (Texas) and Nicosia (Cyprus).

*A select number of positions require full-time in office attendance*

As a key member of the Vulnerability Management team, you will identify, assess, and mitigate security vulnerabilities across our infrastructure. You’ll enhance our vulnerability management processes, leveraging various tools and methodologies to proactively reduce risk and protect critical assets. This role offers the opportunity to work in a dynamic, fast-paced environment, lead security initiatives, and collaborate with cross-functional teams to implement scalable solutions.

What you’ll be doing:

• Perform routine vulnerability assessments using industry-standard tools (e.g., Qualys, Nessus, Rapid7).
• Analyze and prioritize vulnerabilities based on organizational risk, utilizing frameworks such as CVSS, NIST, and OWASP.
• Work with IT, development, and infrastructure teams to develop and implement remediation plans.
• Produce detailed reports on findings, risk assessments, and remediation status for both technical and non-technical audiences.
• Coordinate patching and updates for critical systems and applications.
• Use vulnerability management and ticketing systems (e.g., ServiceNow, JIRA) for tracking and reporting.
• Monitor emerging threats and vulnerabilities to proactively identify risks.
• Ensure processes align with internal policies, regulatory requirements, and industry best practices.
• Enhance vulnerability management processes to improve efficiency and effectiveness.

What you’ll need to be successful:

Must haves:

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent experience.
• 3–5 years’ experience in cybersecurity or IT security, with a focus on vulnerability management.
• Hands‑on experience with vulnerability scanning tools (e.g., Qualys, Tenable Nessus, Rapid7).
• Experience with cloud environments (AWS, Azure, Google Cloud) and container security.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation.
• Experience with CNAPP tools (e.g., Wiz, Prisma Cloud).
• Strong understanding of vulnerability management, risk assessment, and patch management.
• Proficiency with vulnerability management platforms, ticketing systems, and patch management.
• Excellent communication skills; able to present technical findings to non‑technical stakeholders.
• Ability to work independently and collaboratively in a fast‑paced environment.

Nice to haves:

• Experience with cloud security, networks, and system administration.
• Knowledge of security frameworks such as NIST, ISO 27001, and CIS Controls.

As an equal opportunity employer, we celebrate diversity and are committed to creating an inclusive environment for all employees

In this role you may be exposed to adult content