VA Specialist

JOB DETAILS:

Position Title: VA Specialist

Reports to: Senior Manager Digital Exposure

Department: Cyber Defense

Engagement: 12 months extendable

**No visa sponsorship provided

10-15K per month

Job Description:

We are seeking a detail-oriented and proactive Vulnerability Management Analyst to join our team. The ideal candidate will be responsible for identifying, analyzing, prioritizing, and tracking vulnerabilities across multiple client environments. This role requires strong technical expertise, client communication skills, and experience working in multi-tenant security operations environments.

KEY ACCOUNTABILITIES:

1 Strategic

Shape the organization's offensive security strategy by identifying highimpact risks and aligning testing efforts with business priorities and UAE cybersecurity regulations.

Act as a senior advisor to leadership by translating technical findings into strategic security decisions that strengthen longterm cyberresilience.

Drive continuous improvement of penetration testing methodologies, tooling, and redteam capabilities to stay ahead of emerging threats.

Mentor and elevate the technical maturity of the security team, ensuring consistent adoption of bestpractice offensive security standards.

2 Functional

Lead and conduct end-to-end penetration tests (Network, Web Application, Mobile, API, and Cloud) using both manual and automated techniques.

Design and execute red team and adversary simulation exercises to evaluate detection and response.

Analyze vulnerabilities using:

National Vulnerability Database (NVD)

Common Vulnerability Scoring System (CVSS)

Prioritize remediation based on risk, exploitability, business impact, and client SLAs.

Monitor emerging threats and zero-day vulnerabilities.

Ensure all testing methodologies and outcomes support compliance

Work with client IT teams to coordinate remediation efforts.

Provide clear remediation guidance and mitigation recommendations.

Track remediation progress and validate fixes through re-scanning.

Prepare executive-level and technical vulnerability reports.

3 Operations

Perform regular internal and external vulnerability scans.

Maintain dashboards and KPIs for SLA tracking.

Manage vulnerability programs for multiple clients simultaneously.

Ensure adherence to client SLAs and regulatory requirements (e.g., PCI-DSS, ISO 27001).

Participate in client meetings and present findings.

Contribute to process automation and continuous improvement initiatives.

Minimum Qualifications:

Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience). Hands-on experience with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7)

Knowledge of patch management processes.

Familiarity with ticketing systems (ServiceNow, Jira, etc.).

Minimum Experience:

25 years of experience in vulnerability management or security operations.

Language Fluency:

English: Fluent.

Job-Specific Skills:

Proficiency with industry-standard tools like:

Tenable SC / Nessus

Acunetix

Ability to write custom scripts/tools in

Python,

PowerShell

Bash

TCP/IP networking

Windows & Linux systems

Cloud environments (AWS, Azure, GCP)

Overall:

Cybersecurity Knowledge

IT Networking knowledge

Problem solving skills

Communication skills

Required or Highly Preferred Professional Certifications:

CEH

Security+

Tenable or Qualys certifications

eJPT

CCNA

Behavioral: Think Customer Excellent communication and reporting abilities Team-oriented mindset with mentoring capability High ethical standards and professionalism

Technical: I Strong analytical and problem-solving skills Advanced level in Microsoft office (Word, PowerPoint, Excel)