**Company description** Re:Sources is the backbone of Publicis Groupe, the world's third-largest communications group. Formed in 1998 as a small team to service a few Publicis Groupe firms, Re: Sources has grown to 4,000+ people servicing a global network of prestigious advertising, public relations, media, healthcare and digital marketing agencies. We provide technology solutions and business services including finance, accounting, legal, benefits, procurement, tax, real estate, treasury and risk management to help Publicis Groupe agencies do what they do best: create and innovate for their clients. In addition to providing essential, everyday services to our agencies, Re:Sources develops and implements platforms, applications and tools to enhance productivity, encourage collaboration and enable professional and personal development. We continually transform to keep pace with our ever-changing communications industry and thrive on a spirit of innovation felt around the globe. With our support, Publicis Groupe agencies continue to create and deliver award-winning campaigns for their clients **Overview** The IT Security Compliance/Vulnerabilities Associate role has broad technical experience in the information security domains, and can conduct risk assessments, develop appropriate risk responses, and monitor the environment for change. The IT Security Compliance Analyst participate in several projects and tactical initiatives related to enterprise security, manage critical relationships with key stakeholders and vendors, drive process improvements for the information security program, and review risks assessments for potential security exposures.  Perform scans to identify vulnerabilities or confirm compliance to security standards  Maintain patch and vulnerability management practices to protect against the exploitation of critical vulnerabilities  Apply knowledge of operating systems, applications, and database vulnerability assessments (to include system configuration checks) on various Information Systems  Interpret vulnerability assessment results  Conduct research on current vulnerabilities and exploits using publicly available, trusted resources and other finished vulnerability products  Utilize automated tools (e.g. Nessus) and manual checks to identify and validate vulnerabilities Required Qualifications  B.tech or B.S. in Computer Science, Computer Engineering, Information Security or High school Diploma\GED with equivalent work experience  Thorough understanding of fundamental security and network concepts (operating systems, IPS/IDS, TCP/IP, ports, etc.)  Demonstrated analytic expertise – to include ability to think critically and logically in a dynamic, high-pressure, fast-paced environment  Experience with Microsoft and Unix-based operating systems Desired Characteristics  Security certifications (e.g. Security+, GCIA, GCIH, CISSP, CEH, etc.)  2-3 years of computer and network security experience preferred  Experience managing and tracking vulnerability cases  Experience supporting network security investigations  Excellent written and oral communication skills