Your area of work:

Join the Infrastructure Security team and engineer, operate, and continuously improve Exposure Management platforms used across Deutsche Brse Group (vulnerability management, compliance monitoring, and code scanning).

This is not a vulnerability remediation role. You ensure Exposure Management solutions are designed, configured, integrated, operated, and maintained so that scanning and compliance controls run reliably and produce high-quality, usable results. You own the technical health, configuration quality, integrations, and architectural alignment of the Exposure Management services protecting critical enterprise and market infrastructure.

Your responsibilities:

• Contribute to exposure management platforms and support dependable service delivery.
• Manage configuration, integrations, and lifecycle changes from onboarding to upgrades.
• Operate scanning infrastructure, agents, and continuous integration connections at scale.
• Tune policies and rule sets to improve accuracy, coverage, and signal quality.
• Monitor platform health and key performance indicators; troubleshoot and restore service fast.
• Support audits with clear documentation, evidence packages, and technical explanations.
• Maintain architecture and operations documentation, including ownership and handoffs.
• Enable stakeholders with reliable results and guidance, without owning remediation work.
• Embed scanning into operations and delivery pipelines with secure-by-default practices.
• Improve the service through automation, better reporting, and reduced operational toil.

Your profile:

• Degree in Information Security, Computer Science, or a related technical field, or equivalent professional experience.
• Minimum 24 years of relevant experience in Security IT, Security Engineering, or Security Assurance.
• Good understanding of exposure management: vulnerability scanning, compliance monitoring, and code scanning.
• Proven experience running security platforms in production with end-to-end service ownership.
• Experience with integrations and automation, including application programming interfaces and continuous integration.
• Familiarity with vulnerability management and compliance workflows, including audit evidence collection.
• Structured and reliable working style with a strong documentation mindset.
• Ability to collaborate effectively in a global, multiteam environment.
• Excellent command of spoken and written English.

You can look forward to our benefit package:

• Hybrid Work and Flexible working hours
• Work from abroad - 12 days of remote work from EU countries per year
• Group Share Plan - discount on company shares
• Pension fund contribution - 3% of your gross salary (5% after 5 years with us)
• Health & Wellbeing - fully covered Multisport card, life & accident insurance, sick days and 100% salary contribution during sick leave (up to 56 days)
• 25 vacation days
• Mobility - fully covered public transport in Prague & free parking
• Flexible Benefit Account (Pluxee) - 1200 per month
• Free Access to E-Learning Platforms, Internal Development Programs, Mentoring & Learning Budget