Vulnerability manager with a focus on penetration testing (m/f/d)

Establishment, operation and continuous development of the central vulnerability management process Planning, control and coordination of penetration tests (internal & external, e.g. web, infrastructure, cloud, AD, Red Teaming) Selection, assignment and professional control of external Pentest service providers Scope, methodology and timetables for Pentests in close cooperation with IT, departments and service providers Analysis, Priority and Consolidation of Pentest and Scan Results (e.g. according to CVSS, Risk, Business Impact) Tracking of Findings to the Sustainable Fixing (Tracking, Verification, Re-Testing) Advising IT and product teams to resolve security-relevant vulnerabilities Regular reporting to management, CISO and relevant stakeholders Support for audits, certifications and regulatory requirements (e.g. ISO 27001, BSI IT-Grundschutz, NIS2) Further development of guidelines, standards and KPIs in the field of Vulnerability & Pentest Management

Multiannual experience in IT security, ideally in vulnerability or pentest management Very good understanding of penetration tests, attack methods and common vulnerabilities (e.g. OWASP Top 10, CWE, CVEs) Experience in controlling external security service providers Knowledge of popular vulnerability management and ticketing tools (e.g. Nessus, Qualys, Rapid7, Jira, ServiceNow, etc.) Confidence with IT infrastructures, networks, operating systems, web applications and cloud environments Analytical and Structured Operation Embossed communication and coordination capability Ability to prepare technical facts in a comprehensible way for different target groups Enforcement while co-operative cooperation High security and quality awareness

Modern working environment: Working on the ALDI Nord Campus with open-space concept, operating restaurant, cafe, parent-child office and car park incl. e-store stations Work–Life-Balance: Flexible working hours and a hybrid working model with the possibility of proportional mobile work (up to 40%) and 30 holiday days (full time) Mobility: Free e-tanks at the ALDI Nord Campus, cost transfer of the German ticket or a ticket fee Healthcare & Prevention: In-house gym and gym collaborations Onboarding & Learning: Structured onboarding and a variety of possibilities for personal and professional development (e.g. ALDI Academy, eLearnings, etc.) Impact & Teampower: High level of design space and unbeatable team power in a powerful working environment salary & employee discount: Secure workplace at the inventor of the discount with an attractive salary and corporate benefits