Job Description

DeepLight AI is a specialist AI and data consultancy with extensive experience implementing intelligent enterprise systems across multiple industries, with particular depth in financial services and banking. Our team combines deep expertise in data science, statistical modeling, AI/ML technologies, workflow automation, and systems integration with a practical understanding of complex business operations.

DeepLight AI is a specialist AI and data consultancy dedicated to transforming the regional corporate landscape through bespoke, high-impact intelligent systems. Based in the UAE, we partner with organizations across diverse sectors—with a deep-rooted expertise in Financial Services and Banking—to bridge the gap between complex data and actionable business strategy.

At DeepLight, we don't believe in "off-the-shelf" fixes. We deliver tailored AI solutions designed to integrate seamlessly into existing enterprise architectures, ensuring that innovation is both scalable and secure. From building robust data foundations to deploying sophisticated AI platforms, we empower our clients to lead in an increasingly automated world.

The Specialist – Vulnerability Management is a core operational security position within Deeplight consultancy, embedded directly within a major banking client. This role is responsible for the continuous discovery, analysis, and tracking of technical vulnerabilities across the bank's enterprise networks, systems, and applications. Serving as a crucial link between automated security detection and infrastructure engineering teams, this position ensures that security weaknesses are systematically prioritized and resolved in strict accordance with institutional SLAs and financial sector regulatory baselines.

Responsibilities

• Vulnerability Assessment: Operate and maintain enterprise vulnerability scanning schedules across infrastructure, networks, and endpoints, interpreting complex data outputs to pinpoint systemic security gaps.
• Risk Prioritization: Analyze detected vulnerabilities using technical threat intelligence and business context to prioritize remediation tasks based on real-world exploitability and potential banking impact.
• Remediation Tracking: Partner directly with system administrators, infrastructure engineers, and application owners to coordinate, track, and validate patch management and risk mitigation activities.
• Compliance Monitoring: Verify that vulnerability remediation efforts strictly comply with internal corporate security policies and external banking regulations.
• Reporting & Visibility: Generate accurate, structured vulnerability metrics, aging reports, and technical risk summaries for technical teams and security management.
• Professional Execution: Represent Deeplight by maintaining high technical accuracy, process consistency, and professional accountability within the client's day-to-day security operations.

As an AI consultancy, our greatest asset is the expertise of our people.
While technical mastery is the foundation of what we do, the ability to bridge the gap between complex data science and actionable business value is what defines your success with Deeplight.
We're looking for individuals who are not only world-class in their fields of specialism, but also compelling communicators and persuasive advocates for their own skills.
You will be the face of our firm, tasked with building trust, articulating the "why" behind your technical decisions, and effectively "selling" your vision to high-level stakeholders.
If you thrive on the challenge of presenting cutting-edge solutions as much as you do on building them, you will fit right in.

Requirements

We need you to have:

• Vulnerability Tool Proficiency: Technical competence in operating enterprise-scale vulnerability scanning platforms (e.g., Qualys, Tenable Nessus, Rapid7, or cloud-native security utilities).
• Risk Assessment: Advanced understanding of vulnerability scoring methodologies (such as CVSS v3/v4) and the ability to distinguish theoretical risk from actual exploitability within a corporate environment.
• Security Frameworks: Practical knowledge of foundational information security control frameworks (e.g., NIST CSF, CIS Benchmarks, ISO/IEC 27001).
• Technical Troubleshooting: Basic capability to understand operating system architectures, network configurations, and common software patches to support engineering remediation teams.
• Collaborative Communication: Strong interpersonal skills to effectively communicate technical security flaws and urgency to non-security engineering squads.

Essential Experience

• Professional Tenure: Minimum of 4 years of experience in dedicated corporate cybersecurity roles, with at least 2 years focused directly on vulnerability identification, patch tracking, or technical security auditing.
• Financial Services Context: Practical experience operating within a regulated banking or financial services environment, working within formal change management structures (e.g., ITIL).
• Consulting Delivery: Prior experience in a professional services or consultancy capacity, meeting strict client service-level agreements and operational timelines.
• System Administration Foundation: Background working with or securing Windows Server, Linux environments, and core network configurations.

It would also be great if you have:

• Professional Certifications: Relevant designations such as CompTIA Security+, CEH (Certified Ethical Hacker), G组织 credentials (e.g., GEVA - GIAC Enterprise Vulnerability Assessor), or cloud security fundamentals certifications.
• Cloud Infrastructure Security: Conceptual understanding of vulnerability vectors specific to cloud environments (AWS or Azure) and containerized technologies.
• Automation Familiarity: Ability to write simple scripts (e.g., PowerShell, Bash, Python) to clean up or automate reporting from raw vulnerability datasets.

Benefits

The benefits you'll enjoy as part of this role include:

• Competitive salary
• Comprehensive personal health insurance
• Visa Sponsorship for the successful individual
• Professional development and certification support
• Subscription reimbursement relating to your role
• Opportunity to work on cutting-edge AI projects
• Monthly Employee Incentive program
• Career advancement opportunities in a rapidly growing AI company
  

This position offers a unique opportunity to shape the future of AI implementation while working with a talented team of professionals at the forefront of technological innovation. The successful candidate will play a crucial role in driving our company's success in delivering transformative AI solutions to our clients.

At DeepLight AI, we recognise that diversity drives innovation. We are committed to fostering an inclusive environment where individuals with different thinking styles can thrive and contribute their unique strengths to our specialised AI and data solutions.

Our goal is to ensure our application and interview process is accessible, predictable, and fair for all candidates.

If you require any specific adjustments to the application process, or if you require any reasonable adjustments should you be successful in being processed to the interview stage, please do let us know. This information will be kept strictly confidential and will not impact hiring decisions.