Vulnerability Operation Center Lead

FranceFull-timePosted Jul 16, 2026

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Vulnerability Operation Center Lead based in France.

Join a forward-thinking technology organization at the forefront of AI infrastructure, where you'll establish and lead a Vulnerability Operations Center responsible for protecting large-scale cloud, infrastructure, and hardware environments. This highly strategic and hands-on role combines technical leadership, security operations, automation, and cross-functional collaboration to strengthen organizational resilience against emerging threats. You will define vulnerability management processes, implement scalable tooling, and partner closely with engineering teams to drive effective remediation across critical systems. This opportunity is ideal for an experienced cybersecurity professional who enjoys building security programs from the ground up while working with cutting-edge technologies in a fast-paced international environment.

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Vulnerability Operation Center Lead based in France.

Join a forward-thinking technology organization at the forefront of AI infrastructure, where you'll establish and lead a Vulnerability Operations Center responsible for protecting large-scale cloud, infrastructure, and hardware environments. This highly strategic and hands-on role combines technical leadership, security operations, automation, and cross-functional collaboration to strengthen organizational resilience against emerging threats. You will define vulnerability management processes, implement scalable tooling, and partner closely with engineering teams to drive effective remediation across critical systems. This opportunity is ideal for an experienced cybersecurity professional who enjoys building security programs from the ground up while working with cutting-edge technologies in a fast-paced international environment.

Accountabilities

    • Build and lead the Vulnerability Operations Center, defining processes, governance, and best practices for the complete vulnerability management lifecycle.
    • Manage vulnerability detection, validation, triage, remediation tracking, and reporting across cloud infrastructure, products, and hardware environments.
    • Improve automated vulnerability triage capabilities through data enrichment, AI-assisted workflows, contextual risk scoring, and vulnerability correlation techniques.
    • Perform hands-on validation and prioritization of critical and zero-day vulnerabilities to support rapid response efforts.
    • Collaborate closely with engineering, security, compliance, and operations teams to ensure timely remediation and continuous risk reduction.
    • Drive improvements in patch management processes and oversee remediation initiatives across multiple engineering teams.
    • Manage vulnerability intake from scanners, penetration testing, bug bounty programs, and threat intelligence sources.
    • Prioritize findings using industry-standard risk frameworks, including CVSS, EPSS, SSVC, exploitability, asset criticality, and business impact.
    • Contribute to the development and automation of internal vulnerability management and security orchestration platforms.
    • Define key vulnerability management metrics, monitor trends, and present actionable insights and KPIs to security leadership.
    • Coordinate organizational responses to critical security events and maintain integrations across the broader security ecosystem.
    • Requirements

      • 5–8 years of experience in information security, including at least 3 years focused on vulnerability management or security operations.
      • Strong expertise in vulnerability management processes across cloud-native and enterprise infrastructure environments.
      • Deep knowledge of vulnerability assessment methodologies, including CVE, NVD, CVSS, EPSS, SSVC, and risk-based prioritization frameworks.
      • Experience working with cloud platforms such as AWS, Google Cloud, Azure, or private cloud infrastructure.
      • Solid understanding of vulnerability scanning technologies, their capabilities, and their limitations in modern cloud environments.
      • Ability to write and review code, with experience or willingness to develop automation using Golang or similar programming languages.
      • Strong understanding of software and infrastructure vulnerability classes, exploitability analysis, and remediation validation.
      • Experience collaborating with engineering teams to drive remediation while balancing technical risk and operational priorities.
      • Excellent analytical, communication, and stakeholder management skills, with the ability to translate complex technical risks into business-focused recommendations.
      • Experience with Kubernetes security, container security, software supply chain security, SBOMs, dependency scanning, or bug bounty programs is considered an advantage.
      • Previous experience building or scaling a vulnerability management program from the ground up is highly desirable.
      • Benefits

        • Competitive compensation package, including equity participation opportunities.
        • Flexible remote-first working environment.
        • Opportunity to build and lead a strategic cybersecurity function from its inception.
        • High level of ownership and influence over security strategy, tooling, and operational processes.
        • Career growth, continuous learning, and professional development opportunities.
        • Collaborative, engineering-driven culture focused on innovation and technical excellence.
        • Opportunity to contribute to AI-powered security technologies and next-generation cloud infrastructure.
        • International work environment with highly experienced engineering and security professionals.
        • Fast-paced organization offering meaningful technical challenges and significant business impact.
How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!  Why Apply Through Jobgether?    Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.     #LI-CL1

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free