CrawlJobs Logo

Junior Vulnerability Management Engineer

ebrd.com Logo

European Bank for Reconstruction and Development

Location Icon

Location:
Bulgaria , Sofia

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We’re seeking a Junior Vulnerability Management Engineer to join our Security Engineering team. This role focuses on implementing and enhancing the Vulnerability Management process at EBRD, with opportunities to upskill in penetration testing and contribute to the testing team. You’ll improve the scanning process, triage vulnerabilities in order to eliminate false positives, prioritize vulnerabilities taking into consideration multiple factors and crafting sharp reports that drive remediation across the organisation, taking into consideration also risks by potential impact. It’s the perfect launchpad for someone who lives and breathes OWASP Top 10, writes quick-hit exploits, and turns raw findings into actionable risk-reduction strategies. You’ll analyse threat intel feeds, build hypotheses, surface indicators to sharpen detection logic, and collaborate with seasoned red teamers and defenders. If you have a hacker mindset, solid network protocol knowledge, and a passion for turning vulnerabilities into victories, we want to see what you can do.

Job Responsibility:

  • Supports the planning, development and execution of vulnerability scans of the organisations information systems
  • Assists with identifying and resolving false positive findings in assessment results
  • Assists with reconnaissance and information collection on the target environment or attack surface
  • Supports the identification of potential weaknesses and vulnerabilities on assets (i.e., end points, applications, users)
  • Supports the validation of weaknesses via exploitation, and reports their findings
  • Assists with providing recommendations on security controls and/or corrective actions for mitigating technical and business risk
  • Supports the creation of hypotheses for analytics and testing of threat data
  • Analyses data from threat and vulnerability feeds and analyses data for applicability to the organisation
  • Supports the generation of reports on assessment findings and summarises to facilitate remediation tasks
  • Assists with communicating lessons learned, initial indicators of detection and opportunities for strengthening signature-based detection capabilities

Requirements:

  • High level of technical expertise in cybersecurity, including familiarity with relevant penetration and intrusion techniques and attack vectors
  • Understanding of web technologies
  • Grasp of core security fundamentals and concepts
  • Familiarity with the Open Web Application Security Project (OWASP) top 10 vulnerabilities
  • Understanding of offensive tools such as: Metaspoit, Kali Linux, Cobalt Strike, Mimikatz or a similar tool
  • Proficient at creating their own scripts regular expressions in their preferred scripting language
  • Technical knowledge in system security vulnerabilities and remediation techniques, network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.)
  • Technical knowledge in security engineering, system and network security, authentication and security protocols

Nice to have:

The following certifications desired but not essential: Certified ethical hacker (CEH), global information assurance certification (GIAC), GIAC certified pen tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), offensive certified security professional (OSCP) and offensive security certified (OSC)

What we offer:
  • Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in
  • A working culture that embraces inclusion and celebrates diversity
  • We offer hybrid and flexible working arrangements and believe we operate at our best when collaborating 3 days a week in person (minimum)
  • An environment that places sustainability, equality and digital transformation at the heart of what we do
  • A workplace that prioritises employee wellbeing and provides a comprehensive suite of competitive benefits

Additional Information:

Job Posted:
December 25, 2025

Expiration:
January 12, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
European Bank for Reconstruction and Development - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Junior Vulnerability Management Engineer

New

Principal Developer Full Stack

This is your chance to lead the charge in building high-impact, enterprise-grade...
Location
Location
Bulgaria , Sofia
Salary
Salary:
Not provided
ebrd.com Logo
European Bank for Reconstruction and Development
Expiration Date
January 12, 2026
Flip Icon
Requirements
Requirements
  • Educated to degree level in Computer Science, Engineering, or a related field (or equivalent practical experience)
  • Expert-level proficiency in Java (17+) and Spring Boot, including deep architectural knowledge
  • Extensive experience working with a distributed system architecture and design principles
  • Strong experience with containerisation (Docker) and cloud deployments (Azure)
  • Understanding of Kubernetes and its core concepts
  • Experience with the Azure cloud platform, or a comparable cloud environment
  • Experience with enterprise-scale frontend development including JavaScript and Angular
  • Extensive experience designing and implementing relational databases, as well as working with non-relational databases such as MongoDB or Azure Cosmos DB
  • Experience with event-driven architecture and messaging patterns, including queuing and topic-based systems and strong familiarity with the JMS API
  • Deep understanding of performance optimisation and security best practices
Job Responsibility
Job Responsibility
  • Leads the development, enhancement, and maintenance of enterprise-grade full-stack applications using Java (Spring Boot) and Angular within a microservices and micro-frontend architecture
  • Provides technical leadership in designing and implementing scalable, maintainable, and high-performing backend and frontend solutions
  • Ensures best practices in API development, leveraging RESTful services, Open API, and Swagger for documentation
  • Provides technical leadership in implementation of DevOps practices, including Continuous Integration, Continuous Delivery (CI/CD), and infrastructure as code
  • Drives performance optimisation, code refactoring, and the adoption of modern development practices such as asynchronous processing and event-driven architectures
  • Stays up to date with emerging technologies, including AI-assisted development tools and cloud-based AI services, evaluating their relevance for business use cases
  • Collaborates with quality assurance peers and ensures adherence to Quality standards, test automation strategies, and continuous improvement processes on review of quality metrics
  • Champions a shift-left testing approach, ensuring security, performance, and compliance requirements are addressed early in the development lifecycle
  • Implements automated testing frameworks and continuous integration processes to improve software quality and maintainability
  • Fosters a culture of test-driven development (TDD), behaviour-driven development (BDD), and exploratory testing
What we offer
What we offer
  • Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in
  • A working culture that embraces inclusion and celebrates diversity
  • We offer hybrid and flexible working arrangements and believe we operate at our best when collaborating 3 days a week in person (minimum)
  • An environment that places sustainability, equality and digital transformation at the heart of what we do
  • A workplace that prioritises employee wellbeing and provides a comprehensive suite of competitive benefits
  • Fulltime
Read More
Arrow Right

Junior IT Risk Analyst

The IT Risk Analyst, based in Barcelona, plays a key role in supporting excellen...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Mathematics, Statistics, Computer Science, Engineering, Business, or related field
  • 1-2 years of experience in IT risk management, IT audit, IT Consultancy, IT Advisory or a related field
  • Basic understanding of IT Governance and IT Risk Management Frameworks (e.g., COBIT2019, ISO27001, ISF, etc.)
  • Basic understanding of regulatory requirements (e.g., DORA, GDPR, etc.)
  • Strong analytical and problem-solving skills
  • Fluent in English
  • German is a plus.
Job Responsibility
Job Responsibility
  • Assist in conducting regular risk assessments to identify potential IT threats and vulnerabilities
  • Help in analyzing the impact and likelihood of risks
  • Gather and analyze data related to IT risks, incidents, and controls
  • Prepare reports and presentations for senior management
  • Support the monitoring of adherence to Group Risk policies and standards
  • Assist in ensuring transparent and effective identification of IT risks and respective remediation plans
  • Maintain detailed records of risk assessments, mitigation plans, and incidents
  • Assist in preparing quarterly and ad-hoc reports on the internal control system with a focus on IT processes
  • Work closely with other departments, such as IT, legal, compliance, and business units, to support a holistic approach to risk management
  • Assist in regular and ad-hoc touchpoints with Operating Entities
What we offer
What we offer
  • Hybrid work model with up to 25 days per year working from abroad
  • Company bonus scheme
  • Pension benefits
  • Employee shares program
  • Multiple employee discounts
  • Career development and digital learning programs
  • International career mobility
  • Flexible working
  • Health and wellbeing offers, including healthcare and parental leave benefits.
  • Fulltime
Read More
Arrow Right
New

Senior AI/ML Engineer

Barbaricum is seeking a highly experienced Senior AI/ML Engineer to support Soft...
Location
Location
United States , Crane
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance (Top Secret preferred)
  • Bachelor’s degree in Computer Science, Engineering, or related technical discipline (Master’s preferred)
  • 10+ years of progressive experience in AI/ML engineering, software development, or applied data science
  • Expertise in developing, deploying, and securing AI/ML applications within mission-critical or defense environments
  • Demonstrated experience with LLMs, MLOps pipelines, and modern ML frameworks (e.g., PyTorch, TensorFlow)
  • Strong background in software and cyber engineering principles, including system hardening, secure coding, and vulnerability mitigation
  • Proven ability to lead complex technical efforts, mentor junior engineers, and interface with government stakeholders
  • DoD 8570 Advanced certification (e.g., SecurityX, GCSA, CCSP, or equivalent) must be obtained and maintained
Job Responsibility
Job Responsibility
  • Partner with project managers and engineering teams to define objectives for AI/ML systems in support of maneuver, surveillance, and engagement missions
  • Develop and prototype AI/ML systems to address mission-specific requirements, including computer vision, sensor fusion, and decision-support applications
  • Conduct rigorous testing and evaluation of AI/ML performance against operational datasets
  • Analyze test data to identify model strengths, weaknesses, and mission relevance
  • Refine and optimize systems to ensure robustness, scalability, and cyber resilience
  • Troubleshoot complex system challenges and provide technical guidance for deployed solutions
  • Deliver comprehensive documentation and technical reports to stakeholders
  • Maintain awareness of emerging AI/ML technologies, software engineering practices, and cyber defense techniques relevant to mission-critical systems
Read More
Arrow Right

Service Management Specialist

We are currently seeking an experienced professional to join our team in the rol...
Location
Location
China , Guangzhou
Salary
Salary:
Not provided
https://www.hsbc.com Logo
HSBC
Expiration Date
December 31, 2025
Flip Icon
Requirements
Requirements
  • Minimum 10 years of experience in production support, SRE, or DevOps roles, with a proven track record of managing and improving large-scale, mission-critical systems
  • Advanced programming and scripting skills (e.g., Java, Python, Go, SQL, API development, backend systems)
  • Extensive experience with containerization (Docker) and orchestration platforms (Kubernetes), including designing and managing large-scale deployments
  • Proficiency in monitoring and observability tools such as Splunk, CloudWatch, AppDynamics, Prometheus, or Grafana
  • Strong expertise in Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Ansible, with experience in managing cloud-based infrastructure (AWS, Azure, or GCP)
  • Demonstrable experience in designing and implementing automation pipelines for CI/CD and operational tasks
  • Proven ability to lead cross-functional teams to resolve complex technical issues and drive system improvements
  • Strong understanding of security best practices, including vulnerability management and secure system design
  • Excellent written and verbal communication skills in both Mandarin and English, with the ability to communicate complex technical concepts to diverse audiences
  • Experience in mentoring and leading junior engineers, fostering a collaborative and high-performing team environment
Job Responsibility
Job Responsibility
  • Lead the design, implementation, and enhancement of service monitoring systems to ensure services operate within agreed Service Level Objectives (SLOs) and enable rapid response to performance indicator breaches
  • Drive automation initiatives by identifying opportunities to replace manual tasks with software solutions, improving efficiency and reliability across systems
  • Perform in-depth system analysis, configuration management, and implement improvements to enhance system software performance, availability, scalability, and reliability
  • Oversee and approve deployment changes, ensuring adherence to best practices and minimizing change-related incidents that could impact the error budget
  • Collaborate with cross-functional teams, including software engineers, testers, and product managers, to ensure systems meet non-functional requirements such as performance, security, and availability
  • Develop and enforce best practices for incident management, root cause analysis, and post-mortem processes to improve system resilience
  • Mentor and guide junior SREs, fostering a culture of continuous learning and operational excellence
  • Maintain and expand system documentation, including runbooks, architecture diagrams, and operational procedures, ensuring critical knowledge is accessible to the team
  • Lead capacity planning and disaster recovery strategies to ensure system readiness for growth and unexpected events
  • Stay updated on industry trends and emerging technologies, driving innovation and improvements in reliability engineering practices
What we offer
What we offer
  • Continuous professional development
  • Flexible working
  • Opportunities to grow within an inclusive and diverse environment
  • Fulltime
!
Read More
Arrow Right

Software Cyber Security Engineer III

As a Software Cyber Security Engineer III with a strong focus on secure software...
Location
Location
United States , Stafford
Salary
Salary:
117700.00 - 170750.00 USD / Year
karlstorz.com Logo
KARL STORZ
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science or a related field. Master’s Degree preferred
  • Minimum of 5 years of experience with a bachelor’s degree or 3 years with a master’s degree in security-focused software engineering roles
  • Proficiency in Angular, C#, .NET, SQL Server, Web API, NodeJS, JavaScript
  • Expertise in secure coding practices, vulnerability management, and penetration testing
  • Strong knowledge of cryptography, encryption algorithms, and authentication techniques
  • Experience with security tools such as Burp Suite, OWASP ZAP, Nessus, Metasploit
  • Familiarity with cloud security and DevSecOps practices in AWS, Azure, or GCP
  • Strong understanding of product development life cycles and system-level design
Job Responsibility
Job Responsibility
  • Secure Software Development: Design, develop, and maintain secure software solutions by embedding security best practices across the Software Development Life Cycle (SDLC)
  • Vulnerability Assessment & Penetration Testing: Identify and mitigate security vulnerabilities through regular assessments, code reviews, and penetration testing
  • Security Protocols & Encryption: Implement and improve security protocols, encryption techniques, and authentication mechanisms to protect sensitive data
  • Incident Response & Investigation: Investigate security incidents, identify root causes, and implement corrective actions to prevent future threats
  • Collaboration & Mentorship: Partner with product managers, architects, and engineering teams to integrate security requirements into development processes. Mentor junior engineers in secure coding practices
  • Compliance & Standards: Ensure software compliance with internal and external security standards such as OWASP Top 10, SOC 2, and GDPR
  • Automation & Tooling: Develop and automate security tools and processes to enhance overall security posture
What we offer
What we offer
  • Medical / Dental / Vision including a state-of-the-art wellness program and pet insurance
  • 3 weeks vacation, 11 holidays plus paid sick time
  • Up to 8 weeks of 100% paid company parental leave
  • includes maternal/ paternal leave, adoption, and fostering of a child
  • 401(k) retirement savings plan providing a match of 60% of the employee’s first 6% contribution (up to IRS limits)
  • Section 125 Flexible Spending Accounts
  • Life, STD, LTD & LTC Insurance
  • Tuition pre-imbursement up to $5,250 per year
  • Fitness reimbursement of up to $200 annually
  • Fulltime
Read More
Arrow Right

DevOps Engineer III - Cloud

As a DevOps Engineer, you will join the Everseen engineering team to design, cod...
Location
Location
Timișoara; Belgrade; Cork
Salary
Salary:
Not provided
everseen.ai Logo
Everseen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years in DevOps-related roles with a strong focus on automation
  • Experience with Google Cloud Platform
  • Excellent communicator, organized, and thrives in an environment of mutual respect, openness, and collaboration
  • Proficient in DNS, routing, firewalls, reverse-proxying, load-balancing and troubleshooting
  • Extensive experience with Azure (or GCP/AWS), including fully automated infrastructure and deployment
  • Experience with monitoring and optimizing cloud costs
  • Proven experience in implementing and managing CI/CD pipelines (GitLab CI/CD preferred) and excellent knowledge of Git and associated workflows
  • Practical experience with monitoring, logging, and alerting tools and stacks
  • Excellent scripting skills in Bash and Python
  • Advanced knowledge of Kubernetes and Docker, including cluster management, orchestration and auto-scaling
Job Responsibility
Job Responsibility
  • Design and Execute Cloud Architecture: Develop and implement our cloud architecture to support thousands of edge devices connecting to our cloud platform, monitor it and scale it
  • Maintain CI/CD Pipelines: Utilize GitLab CI/CD to maintain pipelines, prioritizing extensibility and reusability, and implement Infrastructure as Code (IaC)
  • Automate Workflows: Focus on automating workflows and enhancing infrastructure scalability
  • Knowledge Sharing: Provide technical guidance and mentorship to colleagues and junior engineers, sharing skills, knowledge, and expertise with peers across the DevOps team
  • Establish Best Practices: Adhere to established standards and introduce best-practice DevOps guidelines and conventions across teams to ensure consistency, prevent silos, and minimize duplicated efforts
  • Research and Implement Tools: Continuously research and test new tools and technologies to fine-tune our cloud platform, ensuring it remains scalable, extensible, and modular
  • Documentation: Write and maintain DevOps-related documentation (articles, diagrams, data flows, etc.) for new and existing applications and services
  • Infrastructure Testing and Data Analysis: Test infrastructure and ensure data is collected, analyzed, and utilized in decision-making processes
  • Collaborate on Technical Architecture: Work collaboratively with project and engineering teams on technical architecture, system design, integration requirements, and overall customer, product, and organizational needs
  • Implement Security Best Practices: In alignment with the Everseen Security department, implement and maintain security best practices, manage container vulnerability scanning and reporting, and address vulnerabilities
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer

As a Senior Cybersecurity Engineer, you will be at the forefront of driving secu...
Location
Location
United States , Bellevue; Overland Park; Frisco; Herndon
Salary
Salary:
103400.00 - 186400.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree Computer Science or Information Technology or equivalent work experience
  • 4-7 years Experience in info security technology or related field
  • Experience with incident handling for Security breaches
  • Expert in security subject areas
  • 2-4 years Technical Project Management
  • Experience with high level design architecture, security technologies, Networking, web services and SOA
  • Understanding of encryption, obfuscation, tokenization technologies
  • Medium to advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
  • Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI
  • Familiarity with load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec) , Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
Job Responsibility
Job Responsibility
  • Leads security, compliance, and risk assessments on projects throughout project lifecycle
  • Improves process efficiency by creating and implementing creative and sustainable changes to existing deployment methodologies
  • Leads the identification of security needs & recommends plans/resolutions
  • Implements, tests & monitors info security improvements
  • Maintains transparency inside & outside of information security at the People management level
  • Communicate with groups such as application support, engineering ops, finance, privacy, risk management, etc
  • Leads information security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance
  • Implements security projects driven by groups both internal and external to info security
  • Mentors peers and junior team members in security technologies, enterprise solution design and facilitation and effective customer interaction
  • Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram
What we offer
What we offer
  • Competitive base salary and compensation package
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Fulltime
Read More
Arrow Right

Specialist Service Desk Engineer

The number one goal of everyone in our team is to make our clients exceptionally...
Location
Location
United Kingdom , Hebburn
Salary
Salary:
34000.00 - 44000.00 GBP / Year
itcservice.co.uk Logo
ITC Service Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A love of (and ability to) Solve Problems & Challenges
  • Excellent communication skills, founded in being a good listener
  • Advanced diagnosis skills of technical issues related of end-user hardware & software and network devices
  • A deep desire to deliver an amazing Client Experience
  • Advanced knowledge of IT Applications, Software & Hardware
  • The ability to speak both Geek and human
  • Experience using a Ticketing system / RMM Tool and PSA software (5 years minimum)
  • Experience providing support via remote tools (5 years minimum)
  • Experience handling Technical Service Tickets (5 years minimum)
  • Experience working either on a Helpdesk or for a Managed Service Provider (MSP) / IT Support Business (5 year minimum)
Job Responsibility
Job Responsibility
  • Work on and resolve escalated Service Desk Tickets and Projects
  • Delight our Clients with a Friendly, Quick and Helpful Experience
  • Provide the Client with advanced remote troubleshooting
  • Remote Hardware Maintenance and Support
  • Use our Ticketing System to manage projects and resolve Service Desk Tickets & Service Requests
  • Managing and recording all work though our Ticketing System
  • Make sure that Client Documentation is well maintained
  • Split tickets that have several issues into their own individual ticket
  • Make sure that tickets aren’t “stale” throughout the process
  • Review RMM dashboard and apply remediation actions as indicated by our Processes
  • Fulltime
Read More
Arrow Right
Welcome to CrawlJobs.com
Your Global Job Discovery Platform
At CrawlJobs.com, we simplify finding your next career opportunity by bringing job listings directly to you from all corners of the web. Using cutting-edge AI and web-crawling technologies, we gather and curate job offers from various sources across the globe, ensuring you have access to the most up-to-date job listings in one place.
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Poland Jobs Ireland Jobs Germany Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2025 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy