As part of GEODIS's cyber security team, the Vulnerability Operational Center (VOC) Analyst is responsible for identifying, analyzing, and managing IT vulnerabilities and related alerts within the organization, in coordination with relevant stakeholders. The role also involves monitoring third-party cybersecurity activities and ensuring compliance with the organization's security policies and standards. The VOC Analyst participates in identifying better ways to secure GEODIS' and GEODIS' partners' cybersecurity posture, such as process improvements. The VOC Analyst supports the VOC Manager in documenting procedures, processes, and presentations, including related to tool benchmarking, and RFP processes. The analyst will collaborate closely with the Security Operations Center (SOC) and CERT (Computer Emergency Response Team) to mitigate risks and enhance the overall security posture of the organization. Key Responsibilities: 1. Vulnerability Management: - Review vulnerability assessments and scans on the organization's IT infrastructure. - Prioritize vulnerabilities based on risk and potential impact. - Collaborate with ISOs, IT teams and relevant stakeholders to ensure timely remediation of identified vulnerabilities. - Maintain and update the vulnerability management database. - Document incidents and information for management review, participate in establishing relevant reports and presentations. 2. Third-Party Cybersecurity Monitoring: - Monitor third parties for compliance with cybersecurity standards. - Work with third-party correspondents or the relevant internal contacts to address and remediate identified vulnerabilities. - Support documentation of Third-Party Cybersecurity Monitoring processes in order to show compliance with frameworks such as NIS2 3. Tooling, Documentation and Support: - Support the VOC Manager in creating and maintaining documentation, including presentations, process documentation, and reports. - Assist in developing and updating cybersecurity policies, procedures, and guidelines. - Conduct benchmarking of cybersecurity tools and technologies to identify the best solutions for the organization. - Assist in the preparation and evaluation of Requests for Proposals (RFPs) for cybersecurity tools and services. - Provide recommendations to the VOC Manager based on tool evaluations and analysis. - Support deployment of new tools and training of relevant users 4. Collaboration and Communication: - Work closely with the Group VOC Manager to develop and implement vulnerability management strategies. - Communicate effectively with IT and business units to raise awareness of vulnerabilities and security best practices. - Recommend improvements to security policies, procedures, and technologies to enhance the organization's security posture.