Vulnerability Management Engineer (Bucharest)

Bucharest
Security

Do you think you have what it takes for identifying, evaluating, treating and reporting on security vulnerabilities in IT enterprise landscapes? Do you want to be the go-to-person for all inquiries on vulnerability management aspects, making sure that this entire ecosystem is updated and protected from a security point of view? #LI-DNI

  • As Vulnerability Management Engineer, you will work as part of Cegeka’s modern SOC. You will:
  • Contribute to the delivery of Cegeka’s MSSP Vulnerability and Compliance Management service;
  • Assist in the deployment of our Vulnerability and Compliance Management solution to customers;
  • Work in close collaboration with customer teams to develop and implement remediation plans for identified vulnerabilities. Provide guidance on patching, configuration changes, and other mitigationstrategies to address the vulnerabilities effectively;
  • Get involved in the daily operational management of our Vulnerability and Compliance platform, which is Tenable;
  • Continuously monitor the evolving threat landscape and stay updated on the latest vulnerabilities, exploits, industry trends, advisories, and security bulletins to enhance the MSSP knowledge base and capabilities. Identify emerging threats and vulnerabilities that could impact clients' systems and networks.
  • Conduct research on new vulnerabilities, exploit techniques, and mitigation strategies;
  • Integrate external vulnerability intelligence feeds and sources into the MSSP vulnerability management service. Leverage threat intelligence to prioritize vulnerabilities and improve the accuracy of risk assessments.
  • Participate in the development and enhancement of the MSSP vulnerability management service. Contribute to the creation of policies, procedures, and best practices related to vulnerability management;
  • Develop and maintain vulnerability management metrics and key performance indicators (KPIs) to measure the effectiveness of the MSSP vulnerability management program. Generate regular reports for management and clients to demonstrate progress and identify areas for improvement.
  • Assist the SOC Engineering team in automating processes related to Vulnerability and Compliance management, by scripting or through leveraging the existing toolset;
  • Collaborate with your colleagues in Cegeka’s Modern SOC, providing advice to members of the CSIRT and Detection Engineering for the development of detection opportunities on emerging threats.

What you need to succeed:

  • You have minimum 1-2 years of experience in a similar role;
  • Good knowledge of vulnerability management tooling (Tenable), scripting
  • Languages(Python), network protocols (TCP/IP), JSON, (REST) API and relational
  • database management system;
  • Experience with Tenable Security Center or Tenable One is a plus;
  • Strong written and verbal communication skills in English;
  • You have a keen interest in cyber security;
  • You are able to work in a team but also independently;
  • You have a high sense of task ownership;
  • You have analytical, technical and diagnostic skills;
  • You are eager to learn.

What are we offering:

  • 22 annual vacation days, 3 sick days that are not carried to the next year (no medical certificate required)
  • A seniority day is added every 3 years in the company
  • Floating days - free day for every public holiday that falls on the weekend, with the exception of holidays which always fall during the weekend
  • A performance-based annual bonus prorated according to the number of worked months in a year
  • Private medical insurance
  • Access to an online benefit platform, with a monthly allowance of 690 RON, which you can choose to invest in different wellbeing, financial, or retail packages
  • Financial support for the birth of your child or unhappy events
  • A work culture based on cooperation and development - customized learning paths through external providers as well as special development programs.
  • We offer remote work flexibility, driven by smart working principles and aligned with team goals and values
  • Wellbeing initiatives to encourage a healthy work life balance through webinars, specialized sessions and internal programs, per our colleagues’ input
  • Moments that matter, like recurring hangout parties, team buildings, team bonding events.
In Cegeka you see how a family-based company truly brings family principles to all its activities.

Anca Udroiu

Project Manager, Cegeka Romania

Aspire to more

At Cegeka, you have every opportunity to further develop yourself as a professional. Together, we achieve what you truly want to mean for our customers and colleagues. We warmly invite you to grow with us through an unparalleled variety of challenging and meaningful IT projects. Leave your mark on projects for high-profile clients where we truly make a difference. Aspire to more.


Intense, enjoyable, and deeply committed—that’s how we work, always together, in close cooperation with colleagues and clients. All within a culture driven by our core values: ownership, personal development, respect, and authenticity. Join us in shaping the next phase of a successful, fast-growing, and innovative international IT company.

Application flow

Do you have any questions about this role?

Let's connect.