Cyber Hygiene Senior Engineer – Vulnerability Management & Configuration Management (f/m/x)

DB Global Technology is Deutsche Bank’s technology center in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.

The Cyber Hygiene Senior Engineer – Vulnerability Management & Configuration Management (AVP) is a senior engineering and control ownership role, accountable for the design, implementation, and continuous evolution of the Bank’s vulnerability management and secure configuration management capabilities.

The person in this role will be responsible for shaping how vulnerability and configuration data is consumed, prioritized, and operationalized across the Bank. In addition to operating existing controls, the role is explicitly accountable for enhancing and implementing new vulnerability and configuration management processes and operating models, ensuring they are scalable, risk‑based, and audit‑ready.

The role requires strong technical depth, clear ownership mindset, and the ability to influence senior stakeholders across engineering, remediation, risk, and audit functions.

Responsibilities

• Own the engineering and evolution of enterprise vulnerability management and secure configuration management capabilities, with Tenable One as the strategic platform, ensuring coverage, data integrity, and control effectiveness.
• Design, enhance, and implement vulnerability and configuration management processes and operating models, including risk‑based prioritization, governance, and remediation workflows.
• Act as platform authority for Tenable One, defining best practices, configuration standards, data quality controls, and usage patterns across vulnerability and configuration management domains.
• Provide senior‑level control assurance, producing metrics, management reporting, and audit‑ready evidence to support governance forums, risk oversight, and regulatory engagements.
• Influence technical direction and standards, supporting architectural decisions, mentoring engineers, and representing vulnerability and configuration management in senior technical and risk forums.

Skills

• Experience: 7+ years of experience in cybersecurity or security engineering roles within large, complex enterprise environments, with deep focus on vulnerability management and secure configuration management.
• Tenable One mastery: Professional‑level, hands‑on expertise with Tenable One, including platform configuration, vulnerability and configuration use cases, data quality management, and integration into enterprise workflows.
• Engineering & domain expertise: Strong understanding of vulnerability lifecycles, secure configuration baselines (e.g. CIS), infrastructure and cloud security risk, and common control failure modes.
• Process & operating model leadership: Proven experience defining, enhancing, or implementing enterprise‑scale vulnerability or configuration management processes in regulated environments.
• Risk, audit & compliance mindset: Demonstrated ability to own security controls end‑to‑end, support audits, and translate regulatory requirements into practical, executable engineering solutions.
• Senior stakeholder engagement: Ability to influence and challenge senior technical and non‑technical stakeholders, driving outcomes without direct authority.

Well-being & Benefits

Emotionally and mentally balanced:

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.
• A professional, passionate, and fun workplace with flexible Work from Home options.
• A modern office with fun and relaxing areas to boost creativity.
• Continuous learning culture with coaching and support from team experts.

Physically thriving:

• Private healthcare and life insurance with premium benefits for you and discounts for your loved ones.

Socially connected:

• Kids@TheOffice - support for unexpected events requiring you to care for your kids during work hours.
• Enjoy retailer discounts, cultural and CSR activities, employee sport clubs, workshops, and more.

Financially secure:

• Competitive income, performance-based promotions, and a sense of purpose.
• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).

Interested in more: discover what our employees value in the Well-being & Benefits hub!

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.