• Leading the transformation from traditional Vulnerability Management to a holistic CTEM program. Identifying capability gaps and drive the selection and implementation of new tools to complete the full exposure lifecycle.
• Overseeing the engineering and operation of our core Exposure Management ecosystem, specifically Tenable One and XM Cyber. Ensuring optimal configuration and health.
• Ensuring seamless integration of security scanning within the SDLC and managing cloud-native scanning posture for Google Cloud Platform (GCP) and Microsoft Azure.
• Prioritization & Validation: Moving beyond CVSS scores. Leveraging Attack Path Management (XM Cyber) to validate risks and prioritize remediation based on actual exploitability and business impact.
• Providing technical direction and mentorship to the engineering team. Managing the backlog, ensuring a balance between operational stability and strategic project implementation.
• Bridging the gap between security findings and IT operations. Designing automated workflows and clear metrics to ensure valid threats are remediated swiftly.
• Ensuring the expanded CTEM scope satisfies strict banking regulations.

• Experience with Exposure management platforms. Deep understanding of the vulnerability management lifecycle. Hands-on experience with enterprise vulnerability management platforms for network, agent-based, and container scanning. Experience with Web application scanning.
• Proven experience with CTEM platforms and attack simulation concepts to identify, visualize, and prioritize critical security gaps.
• Understanding of the cloud architecture. Experience and knowledge of cloud security principles. Understanding of CSPM, CNAPP, “Shift-Left Security” approach will be beneficial.
• Experience in auditing and scanning systems against industry standard security configuration guidelines, such as CIS benchmark.
• Create and maintain detailed product roadmap that outlines prioritized features, enhancements and integrations.

In return, we offer:

• Good work-life balance, including 25 days annual paid leave (increasing with 1 day per year up to 31 in total), flexible working hours, work-from-home and work from abroad opportunities;
• Luxury package of additional health and dental insurance;
• Food vouchers in the amount of EUR 80 monthly;
• 6 additional annual days off for exceptional circumstances
• Employee assistance program for psychological, financial and legal consultations;
• Multisport card;
• Annual contribution of EUR 153.39 net per child for a summer camp/school/kindergarten for children up to age of 15;
• Possibilities for building career-advancing skills by covering training/certification courses and conferences based on individual learning and development needs, access to an online learning platform;
• Opportunities for long-term professional development in a stable, 150-year-old company while contributing to the vision of a new, just starting Digital Technology Center;
• Friendly and supportive multicultural environment, open to new opinions and ideas.

Commerzbank is proud to be an equal opportunity employer, committed to creating a diverse environment. All qualified applicants will receive consideration for employment without regard to gender, race, color, national origin, religion, gender identity or expression, sexual orientation, genetics, disability, age, or any other characteristics.

Work internationally; Work-life balance; Health& Dental Insurance; Multisport Card; 25 up to 31 annual paid leave; 6 Exceptional Days Off; Food vouchers; Employee assistance program; Children Summer Camp Contribution; Learning Platforms

Commerzbank is a leading international commercial bank with branches and offices in almost 50 countries. The world is changing, becoming digital, and so are we. We are leaving the traditional bank behind us and we are choosing to move forward as a digital enterprise.

As part of this strategy, Commerzbank continues the expansion of its Digital Technology Center in Sofia, Bulgaria. We need motivated people who will join us on this journey and we are looking for a Vulnerability Scanning / CTEM Engineering Lead in our Cyber Defense and Base Services team.

Apply now with your up-to-date CV in English!

Only shortlisted candidates will be invited to interview.