Vulnerability Analyst

Application Security Vulnerability Analyst

Location: Limerick (Hybrid)

Contract: 6‑month contract‑to‑hire

Industry: Medical Devices / Regulated Software

Right to work: Ireland/EU only (no sponsorship)

Waters is seeking an Application Security Vulnerability Analyst to join its Product Security team in Limerick. This role focuses on hands‑on vulnerability assessment of Windows‑based applications used in regulated medical‑device products.

This is not a SOC, SIEM, cloud, or network security role. The position is centred on known vulnerabilities, exploitability analysis, and product impact assessment.

Responsibilities

Assess known software vulnerabilities (CVEs) impacting Windows‑based applications

Perform exploitability, impact, likelihood, and residual risk analysis

Analyse SBOMs and SCA outputs to understand third‑party component risk

Evaluate safety and patient risk in a regulated product environment

Produce clear vulnerability assessment and security risk documentation

Work closely with product security, engineering, and quality teams

Support internal, customer, and regulatory security queries

Requirements

Essential

2+ years' commercial experience in application security, vulnerability analysis, or vulnerability management

Strong understanding of CVEs, exploitability assessment, and risk scoring

Knowledge of secure software concepts (e.g. SQL injection, authentication flaws, privilege escalation)

Experience with Windows‑based applications and/or .NET environments

Strong written technical documentation skillsDesirable

Experience with SCA and SBOM analysis

Exposure to regulated or safety‑critical software environments

Familiarity with standards such as IEC 81001‑5, ISO 27001, or NIST

Security certifications (Security+, CEH, GIAC, etc.)

Working model

Hybrid role based in Limerick

Onsite attendance required during onboarding and collaboration

Not fully remote

Contract details

Initial 6‑month contract

Strong intention to convert to permanent employment (subject to approval)

Competitive hourly rate

Eligibility

Must have unrestricted right to work in Ireland (includes Brisith Citizens)

No visa sponsorship available

Please click to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement.

To find out more about Real, please visit

Real Staffing, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy | Registered office | 8 Bishopsgate, London, EC2N 4BQ, United Kingdom | Partnership Number | OC(phone number removed) England and Wales