Vulnerability Advisor

About us:

Equans is a world leader in the energy and services sector, with annual revenues of nearly €19, 2 billion* and almost 800, 000 projects. ​

Equans has leading positions in Europe, which is the result of the history of energy construction in these countries, and strong presences in North and South America and in Oceania. ​

With nearly 90, 000 highly skilled employees, Equans has a strong geographic footprint, anchored by historic local brands. Equans provides its customers with excellent technical expertise in the design, installation, maintenance and operation of multi-technical facilities. This know-how is based on key skills.

First of all, in electrical and thermal engineering - two strong points that help accelerate the reduction of our clients' carbon footprint - but also in ventilation, refrigeration, mechanics and robotics, fire protection, energy renovation, digital solutions, IT, cyber security and telecommunications.

The combination of these expertise allows us to offer efficient and optimized solutions at all stages of the energy chain, from production, storage and transport to usage. Now we are opening a new IT Hub in Romania/Bucharest.

What you’ll do:

• Own vulnerability management across a global attack surface (20, 000+ assets).
• Analyze, qualify and prioritize vulnerabilities using CVSS, EPSS, threat intel, and exploitability.
• Drive remediation with business units and reduce vulnerability backlogs.
• Operate and evolve VM tooling (Tenable, Wiz, Ivanti RBVM, ServiceNow).
• Produce dashboards, reports, and weekly risk updates for CISOs and stakeholders.
• Act as vulnerability subject-matter expert in governance and security committees.

Must-have:

• 5+ years in vulnerability management or exposure management roles.
• Strong hands-on experience with Tenable or Wiz (both preferred).
• Solid understanding of IT architectures, cloud, and networked systems.
• Ability to contextualize vulnerabilities using CVSS, EPSS, PoCs and threat data.
• Experience working with remediation teams or advising business units on risk reduction.
• Fluent English and strong communication skills with technical and non-technical stakeholders.

Why it’s worth it?

• Global-scale vulnerability program with real ownership.
• High exposure to cloud, infrastructure and enterprise environments.
• Clear path toward senior cyber risk, exposure management or security leadership roles.

Interested in discovering us?