About Us
Dunnes Stores is Ireland's leading retailer positioned at the cutting edge of food and fashion retailing. We have over 130 stores throughout Ireland, Northern Ireland and Spain and are constantly expanding our services and product offerings.
Role Purpose
We're seeking a Vulnerability Management Senior Analyst to join our Cyber Defence Team. This role will involve leading vulnerability management, threat intelligence, cloud security posture management, attack surface management and cyber asset management.
Key Responsibilities
* Configure and operationalise enterprise vulnerability management platforms.
* Plan and execute vulnerability scanning, reporting and remediation using risk-based prioritisation.
* Collect and curate cyber threat intelligence to support SOC monitoring and proactive response.
* Manage cloud security posture across multiple environments, driving identification and remediation.
* Run attack surface management, including enumeration and investigation of exposed assets.
* Maintain specialist knowledge of new vulnerabilities and TTPs in active exploitation.
* Stay current on cybersecurity trends, threats and technologies relevant to retail.
* Support cyber defence operations as needed, providing expert guidance on threats and vulnerabilities.
* Provide leadership cover for Cyber Defence and act as team point of contact when required.
Qualifications and Experience
You'll need:
* 5+ years' experience in a cybersecurity role.
* Bachelor's or Master's Degree in Information Security, Cybersecurity, Computer Science or a related field.
* Strong experience in threat and vulnerability management, ideally within retail or another large, distributed environment.
* Strong knowledge of Windows, Linux, Active Directory, cloud and networking technologies.
* Scripting experience to automate discovery and processing of asset information.
* Hands-on experience with threat and vulnerability management, cyber asset management, attack surface management and cloud security posture management tooling.
* Experience configuring and maintaining an enterprise vulnerability management solution.
* Experience with PCI DSS scanning, reporting and compliance activities.
* Professional certifications such as CISSP, CEH, CRTO, GIAC or OSCP.
* Strong understanding of cybersecurity frameworks, for example NIST CSF and MITRE ATT&CK, and regulatory requirements such as PCI DSS.
* Excellent communication, written and organisational skills.
* Ability to translate complex cybersecurity concepts into business terms and influence decisions.
* Working knowledge of cyber threat intelligence for use case development and reporting.
Benefits
Our package includes:
* A competitive salary.
* A comprehensive benefits package.
* Opportunities for professional development and career progression.
* A dynamic and collaborative work environment focused on innovation and growth.