Senior Security Engineer (Vulnerability Management)

TL;DR

Senior Security Engineer (Vulnerability Management): Overseeing vulnerability and patch management, conducting penetration tests, and analyzing threat intelligence to secure critical assets in a regulated environment. Focus on assessing the effectiveness of first-line security controls, designing independent assurance tests, and aligning cyber risk policies with regulatory standards.

Location: Hybrid (Stockholm, Sweden)

Company

hirify.global is a professional recruitment firm specializing in cybersecurity and threat management placements.

What you will do

• Monitor threat intelligence activities and conduct independent analyses on emerging risks and systemic vulnerabilities.
• Oversee vulnerability management processes, reviewing scan results and remediation timelines to ensure adequate patching.
• Plan and execute independent penetration tests and deep dives into critical controls and technology assets.
• Assess the effectiveness of first-line cyber controls and challenge business/IT risk decisions.
• Refine incident response plans and procedures based on emerging threats and best practice guidance.
• Develop cyber risk policies and frameworks ensuring alignment with regulatory expectations such as FCA and GDPR.

Requirements

• 10+ years of experience in cybersecurity, preferably within regulated financial services or fintech.
• Advanced degree in Cybersecurity, Computer Science, or a related field.
• Strong understanding of vulnerability/patch management and penetration testing methodologies.
• Proficiency with frameworks such as NIST, ISO 27001, MITRE ATT&CK, and CIS.
• Must be located in or able to work in Stockholm, Sweden on a hybrid basis.

Nice to have

• Professional certifications such as CISSP, CISM, CEH, OSCP, or GIAC.