Назад
Company hidden
2 дня назад

Vulnerability Manager (Cyber Security)

Формат работы
hybrid
Тип работы
fulltime
Английский
b2
Страна
Germany
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Vulnerability Manager (Cyber Security): Overseeing and improving the organization’s vulnerability management process within the SOC with an accent on risk-based prioritization and remediation coordination. Focus on operating scanning tools, analyzing risk exposure, and bridging the gap between technical security and business stakeholders.

Location: Frankfurt, Germany (Mobile work available)

Company

An independent technology and electronics company specializing in safe, connected, and autonomous mobility solutions for software-defined vehicles.

What you will do

  • Monitor and analyze open vulnerabilities across all management systems, tracking trends and risk exposure.
  • Perform risk-based assessment and prioritization of vulnerabilities using CVSS and business context.
  • Operate and optimize vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7) to ensure sufficient coverage.
  • Coordinate remediation campaigns and track progress, escalating delays or risk deviations.
  • Provide clear reporting on vulnerability status and risk exposure to stakeholders.
  • Continuously improve vulnerability management processes, tooling, policies, and KPIs.

Requirements

  • Strong understanding of vulnerability management processes and frameworks.
  • Experience with vulnerability scanning tools such as Qualys, Tenable, or Rapid7.
  • Knowledge of vulnerability scoring systems (CVSS) and risk-based prioritization.
  • Good understanding of IT infrastructure, including networks, endpoints, and cloud environments.
  • Ability to translate technical vulnerabilities into business risk and communicate effectively with cross-functional teams.

Nice to have

  • Experience in a SOC or cyber security operations environment.
  • Familiarity with regulatory frameworks like ISO 27001, NIS2, or TISAX.
  • Certifications such as CISSP, CISM, or GIAC Enterprise Vulnerability Assessor (GEVA).

Culture & Benefits

  • Pay for performance including achievement and recommendation bonuses.
  • Flexibility program offering flexible hours, mobile work, and sabbaticals.
  • Well-being package with private health insurance, life insurance, and sports activities.
  • Life-long learning via dedicated programs, conferences, and free language courses.
  • Access to internal development communities (Experts, Agile, AI).

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →