Vulnerability Manager (Cyber Security)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Vulnerability Manager (Cyber Security): Overseeing and improving the organization’s vulnerability management process within the SOC with an accent on risk-based prioritization and remediation coordination. Focus on operating scanning tools, analyzing risk exposure, and bridging the gap between technical security and business stakeholders.
Location: Frankfurt, Germany (Mobile work available)
Company
An independent technology and electronics company specializing in safe, connected, and autonomous mobility solutions for software-defined vehicles.
What you will do
- Monitor and analyze open vulnerabilities across all management systems, tracking trends and risk exposure.
- Perform risk-based assessment and prioritization of vulnerabilities using CVSS and business context.
- Operate and optimize vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) to ensure sufficient coverage.
- Coordinate remediation campaigns and track progress, escalating delays or risk deviations.
- Provide clear reporting on vulnerability status and risk exposure to stakeholders.
- Continuously improve vulnerability management processes, tooling, policies, and KPIs.
Requirements
- Strong understanding of vulnerability management processes and frameworks.
- Experience with vulnerability scanning tools such as Qualys, Tenable, or Rapid7.
- Knowledge of vulnerability scoring systems (CVSS) and risk-based prioritization.
- Good understanding of IT infrastructure, including networks, endpoints, and cloud environments.
- Ability to translate technical vulnerabilities into business risk and communicate effectively with cross-functional teams.
Nice to have
- Experience in a SOC or cyber security operations environment.
- Familiarity with regulatory frameworks like ISO 27001, NIS2, or TISAX.
- Certifications such as CISSP, CISM, or GIAC Enterprise Vulnerability Assessor (GEVA).
Culture & Benefits
- Pay for performance including achievement and recommendation bonuses.
- Flexibility program offering flexible hours, mobile work, and sabbaticals.
- Well-being package with private health insurance, life insurance, and sports activities.
- Life-long learning via dedicated programs, conferences, and free language courses.
- Access to internal development communities (Experts, Agile, AI).
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →