Your area of work:
Join the Infrastructure Security team and engineer, operate, and continuously improve Exposure Management platforms used across Deutsche Börse Group (vulnerability management, compliance monitoring, and code scanning).
This is not a vulnerability remediation role. You ensure Exposure Management solutions are designed, configured, integrated, operated, and maintained so that scanning and compliance controls run reliably and produce high-quality, usable results. You own the technical health, configuration quality, integrations, and architectural alignment of the Exposure Management services protecting critical enterprise and market infrastructure.
**Your **responsibilities:
-
Contribute to exposure management platforms and support dependable service delivery.
-
Manage configuration, integrations, and lifecycle changes from onboarding to upgrades.
-
Operate scanning infrastructure, agents, and continuous integration connections at scale.
-
Tune policies and rule sets to improve accuracy, coverage, and signal quality.
-
Monitor platform health and key performance indicators; troubleshoot and restore service fast.
-
Support audits with clear documentation, evidence packages, and technical explanations.
-
Maintain architecture and operations documentation, including ownership and handoffs.
-
Enable stakeholders with reliable results and guidance, without owning remediation work.
-
Embed scanning into operations and delivery pipelines with secure-by-default practices.
-
Improve the service through automation, better reporting, and reduced operational toil.
Your profile:
-
Degree in Information Security, Computer Science, or a related technical field, or equivalent professional experience.
-
Minimum 2–4 years of relevant experience in Security IT, Security Engineering, or Security Assurance.
-
Good understanding of exposure management: vulnerability scanning, compliance monitoring, and code scanning.
-
Proven experience running security platforms in production with end-to-end service ownership.
-
Experience with integrations and automation, including application programming interfaces and continuous integration.
-
Familiarity with vulnerability management and compliance workflows, including audit evidence collection.
-
Structured and reliable working style with a strong documentation mindset.
-
Ability to collaborate effectively in a global, multi‑team environment.
-
Excellent command of spoken and written English.
You can look forward to our benefit package:
-
Hybrid Work and Flexible working hours
-
Work from abroad - 12 days of remote work from EU countries per year
-
Group Share Plan - discount on company shares
-
Pension fund contribution - 3% of your gross salary (5% after 5 years with us)
-
Health & Wellbeing - fully covered Multisport card, life & accident insurance, sick days and 100% salary contribution during sick leave (up to 56 days)
-
25 vacation days
-
Mobility - fully covered public transport in Prague & free parking
-
Flexible Benefit Account (Pluxee) - 1200 per month
-
Free Access to E-Learning Platforms, Internal Development Programs, Mentoring & Learning Budget