Vulnerability Management Expert (m/f/d)

Company Description

METRO is a leading international food wholesaler which specialises in serving the needs of hotels, restaurants, and caterers (HoReCa) as well as independent merchants (Traders). Around the world, METRO has approx. 15 million customers who benefit from the wholesale company’s unique multichannel mix: customers can purchase their goods in one of the large stores in their area as well as by delivery (Food Service Distribution, FSD) – all digitally supported and connected. In parallel, METRO MARKETS is being developed as an international online marketplace for the needs of professional customers which has been growing and expanding continuously since 2019. Acting sustainably is one of the company principles of METRO which has been listed in various sustainability indices and rankings, including MSCI, Sustainalytics and CDP. METRO operates in more than 30 countries and employs over 85,000 people worldwide. In financial year 2023/24, METRO generated sales of €31 billion.

Job Description

This role is a crucial part of a team focused on establishing Attack Surface Management capabilities across METRO AG to protect the organization's assets and continually reduce and optimize its attack surface. At METRO we are convinced that controlling the Attack Surface is the most essential part of vulnerability management. The primary purpose of this role is to lead and steer the development, maintenance, and strategic direction of Attack Surface Management capabilities for METRO AG. It acts as a central point of responsibility for providing technical guidance to proactively identify and remediate vulnerabilities within the METRO AG environment, ultimately reducing the risk of associated incidents.

Your tasks:

• Development, maintenance, and strategic direction of Attack Surface Management capabilities.
• The role serves as a central role responsible for providing technical guidance for reducing the risk of vulnerabilities and associated incidents by proactive identification and remediation of vulnerabilities.
• Collaborate and provide business and technical expertise to MSSP Analysts to optimize the MSSP detection and response capabilities.
• Oversees current tools and technologies being leveraged within the CDC and provides strategic guidance to continuously improve the Attack Surface Management
• Interact closely with METRO Group Security Architecture team, other CDC interfaces, and Network & Infrastructure team.

Qualifications

• A degree in Computer Science or Engineering.
• 3-8 years of experience in technical risk reduction.
• Proficient in Change Data Capture (CDC) and other relevant interfaces.
• A collaborative and knowledge-sharing attitude.
• Leading the development, maintenance, and strategic direction of Attack Surface Management capabilities.
• Providing technical guidance for proactive vulnerability identification and remediation to reduce risks and associated incidents.
• Collaborating with MSSP Analysts to optimize detection and response capabilities.
• Overseeing CDC tools and technologies and continuously improving Attack Surface Management.
• Engaging effectively with METRO Group Security Architecture, other CDC interfaces, and the Network & Infrastructure team.

Additional Information

What we offer:

• You are part of an international and experienced team with a high degree of personal responsibility and independence in a friendly, highly dynamic, and proactive environment
• You will gain insight into the management holding of an international, listed retail group and work operationally on challenging projects
• We actively support you in your professional development and promote your potential through collegial coaching and advice
• We offer you flexible home office solutions, employee discounts in our wholesale stores as well as an attractive compensation package