Vulnerability Management Engineer. Bratislava, Slovakia

Avia Solutions Group (ASG), is the largest global ACMI (aircraft, crew, maintenance, and insurance) provider with 220+ aircraft fleet, and a parent company of SmartLynx Airlines, Avion Express, BBN Airlines, KlasJet, AirExplore, Magma Aviation and more operating in all continents in the world.

The Team:

Our Cybersecurity team is responsible for security and trust. We think security-offensively and defensively. We continuously monitor our global security posture and are always adapting to the ever-changing threat landscape.

The Cybersecurity Engineering team is tasked with building security into all technical aspects of Information Technology. This team maintains our platforms, and always has an eye towards the future.

The Role:

The Vulnerability Management Engineer will work within the Security Engineering team to enhance and ensure the continuous vulnerability lifecycle management within ASG. This individual will lead by building bridges and forming relationships with the technical teams within ASG, to support strategies and controls for vulnerabilities throughout ASG and subsidiary companies.

The work you’ll do:

•  Enhance the current Vulnerability Management strategy and process for ASG.
• Act as a champion for vulnerability management and information security including broadening awareness and use of the team’s services, education of security best practices and integration with other business areas.
•  Drive actionable metrics and reporting for operations and leadership transparency.
•  Provide prompt attention and visibility into risks, vulnerabilities, and issues serving as an escalation path for team member effectiveness.
•  Closely support and collaborate with ASG IT and Cybersecurity teams.
•  Serve as subject matter expert related to vulnerability management and secure configuration.
•  Have the ability to understand and develop enterprise policy and technical standards with specific regard to vulnerability management and secure configuration.
•  Be able to identify and assess the potential impact from vulnerabilities specific to ASG’s environment, and determine and implement mitigating controls.
•  Identify and lead the appropriate measures to manage/remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company.
•  Build strong partnerships with technical teams to promote best practices for managing vulnerabilities in an agile manner and within cloud solutions.
•  Providing mentorship, coaching, performance management and support to team members regarding vulnerability assessment, communication/rapport with other divisions and various levels of leadership, technical expertise, and career development.
•  Oversight of onboard and offboard resources.

The qualifications you need:

•  Experience in vulnerability management or related field such as penetration testing, SOC, or threat intelligence.
•  Drive to learn new things about vulnerability management, exploits, hacker techniques, and overall security operations.
•  Familiar with industry standard security best practices and vulnerability management processes including compliance reporting.
•  Demonstrated ability to participate in cross functional teams, including offsite, remote and offshore resources.
•  Excel at prioritizing work and other demands for self and team including making risk-based decisions about remediation recommendations.
•  Ability to define, communicate and execute on a vision and strategy.
•  Ability to effectively communicate with technical and non-technical resources.
•  Self-directed, works with minimal guidance, and recognizes when guidance needed.
•  Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing.
•  Experience working in very large enterprise environment with diverse teams.
•  Advanced experience with vulnerability scanning tools and other security testing tools.
•  Understanding of attacker mindset, exploitation, and how vulnerabilities are leveraged.

What do we offer?

• MultiSport card is your key to over 2700 sports facilities in Slovakia and the Czech Republic.
• One extra day off on your birthday.
• Snack day twice a month.
• Financial benefit to support your health, sport and beauty activities and to sponsor cultural activities and entertainment.
• Referral Bonus up to 1000 EUR.
• Daily food allowance and refreshments in the office.

Salary range is 2500 EUR - 3500 EUR Gross.