Vulnerability and Compliance Engineer

Social network you want to login/join with:

col-narrow-left

Other

-

col-narrow-right

afcafe5ba496

4

03.06.2025

18.07.2025

col-wide

We are looking for a Vulnerability and Compliance Engineer who will assist the team with improving and maintaining the clients’ vulnerability and compliance tooling.

Start: August 2024
End: 31/03/2025 - extension possible
Location: Basel and remote (within Switzerland)
Fulltime

Tasks:
Transforming and presenting data within the big data platform to the Governance and Assurance Team (and others).

Developing custom compliance checks where they do not exist out of the box.

Assisting other teams working with the results and operationalising processes associated with vulnerability and compliance monitoring.

Troubleshooting scanning issues (both vulnerability and compliance) including authentication failures and false positives.

Providing platform support when required (patching applications, etc).

Other duties as required, as the team works with changing priorities and in response to internal customer demands.

Perfect candidate:

The perfect candidate will have knowledge and experience using vulnerability and compliance tooling products. They will be able to script in both Python and Powershell, and understand modern development practices such as version control and CI/CD pipelines.

They will be passionate about security vulnerability management and compliance scanning, and passionate about turning data into actionable processes and improvements.

They will understand priorities and deliver tasks with minimal supervision, but also suggest improvements and nominate tasks themselves. They need to be able to work well with customers to understand requirements in an informal setting, to rapidly deliver improvements.

Responsibilities:

Tune and troubleshoot the clients’ VM and compliance platform (InsightVM, Azure Defender Suite).

Implement custom scripts to check technical settings are in line with the clients’ policies and standards.

Implement custom logic to prioritise vulnerabilities and compliance issues.

Integrate tool output (eg from a compliance tool or system) into the big data platform, used for compliance.

Implement queries (SQL or similar) to extract relevant data for reporting and alerting.

Perform application patching of the vulnerability and compliance applications.

Troubleshoot data quality issues, and tool issues.

Must haves:

Excellent Python skills; experience with integration work, processing structured data such as JSON or CSV and data importing and exporting into data platforms. (****)

Experience in Cybersecurity with a good understanding of vulnerability and compliance management. (****)

Understanding of and experience working with structured data and data workflows. (****)

Understanding of and experience working with modern development practices such as version control and CI/CD pipelines (****)

Ability to digest and understand user requirements, and implement them “properly” in an existing tech stack. (****)

Interpersonal skills:
Strong drive and willingness to deliver, i.e. “get things done” in a secure environment.
Self-starter, able to work independently and suggest solutions to problems in relation to existing systems and tools.

Nice to have:
Experience with InsightVM Platform
Experience with the Azure security ecosystem (in particular Defender suite).
Experience with Dataiku DSS.
Experience with Tableau.
PowerShell skills.
Experience with other scripting or programming languages.
Experience SCAP policy development.
Experience with OpenShift ACS.
Experience in maintaining applications in an enterprise environment.
Troubleshooting experience.

If you are interested, please apply with your latest CV

Michael Bailey International is acting as an Employment Business in relation to this vacancy.