Attack Surface Management Expert (m/f/d)

Company Description

As a leading international food wholesaler, we at METRO are specialized in catering to the needs of hotels, restaurants, caterers (HoReCa), independent merchants (Traders), and more. With approximately 15 million customers worldwide, our unique multichannel mix offers the flexibility of purchasing goods in-store or via our digitally connected Food Service Distribution (FSD) delivery. In addition, we are continuously expanding our international online marketplace, METRO MARKETS, to meet the needs of our professional customers. We furthermore take pride in our commitment to sustainability which is considered in all our actions and being listed in various sustainability indices and rankings for years is proof for our dedication (e. g. MSCI, CDP, Dow Jones Sustainability Index). With our business operations spanning 32 countries, over 90,000 employees worldwide and generating sales of around €30 billion in the fiscal year 2022/23, we are determined to continue our journey to growth.

At METRO, we have set ourselves ambitious goals with our “sCore” growth strategy which is closely accompanied by our Fundamentals. These shared values provide us with rules of conduct that are binding for everyone at METRO, in all countries and companies. Our commitment to wholesale is at the forefront of our mission, and we are constantly striving to improve. With our ONE METRO spirit, everyone stands together, bringing curiosity, determination, courage, drive, commitment, and trust. Find out more about METRO at careers.metroag.de.

Job Description

Join us, in developing and strengthening an entire department and transforming cybersecurity capabilities on a global scale. If you're committed to making a real impact in the field of Cyber Security, you can #ShapeTheM with us.  

Besides an interesting professional environment, we offer you a culture that wants you to thrive and allows to learn from each other: 

• We try together, we stumble together, we get up together and shape our future. Be part of our transformation, build cross-functional capabilities and discover new ways of excelling in the Cyber Security field. 

• We create impact in the world of food and offer comfort for our customers worldwide. To achieve this, we build capabilities to be the cyber-resilient omni-channel wholesaler. 

• We invite you to take on responsibility, make our company your company and create a business together that remains true to its roots but always seeks new solutions. 

• Together, we CARRY the M, we GROW the M, we INSPIRE the M, we SHAPE the M. 

Your purpose as Attack Surface Management Expert (m/f/d):

This role is a crucial part of a team focused on establishing Attack Surface Management capabilities across METRO AG to protect the organization's assets and continually reduce and optimize its attack surface. The primary purpose of this role is to lead and steer the development, maintenance, and strategic direction of Attack Surface Management capabilities for METRO AG. It acts as a central point of responsibility for providing technical guidance to proactively identify and remediate vulnerabilities within the METRO AG environment, ultimately reducing the risk of associated incidents.

Your tasks:

• Development, maintenance, and strategic direction of Attack Surface Management capabilities.
• The role serves as a central role responsible for providing technical guidance for reducing the risk of vulnerabilities and associated incidents by proactive identification and remediation of vulnerabilities.
• Collaborate and provide business and technical expertise to MSSP Analysts to optimize the MSSP detection and response capabilities.
• Oversees current tools and technologies being leveraged within the CDC and provides strategic guidance to continuously improve the Attack Surface Management
• Interact closely with METRO Group Security Architecture team, other CDC interfaces, and Network & Infrastructure team.

Qualifications

• A degree in Computer Science or Engineering.
• 3-8 years of experience in technical risk reduction.
• Proficient in Change Data Capture (CDC) and other relevant interfaces.
• A collaborative and knowledge-sharing attitude.
• Leading the development, maintenance, and strategic direction of Attack Surface Management capabilities.
• Providing technical guidance for proactive vulnerability identification and remediation to reduce risks and associated incidents.
• Collaborating with MSSP Analysts to optimize detection and response capabilities.
• Overseeing CDC tools and technologies and continuously improving Attack Surface Management.
• Engaging effectively with METRO Group Security Architecture, other CDC interfaces, and the Network & Infrastructure team.

Additional Information

• To be part of a fast-growing international team that has significant scaling ambitions across multiple markets.
• Work-Life Balance: Trusted working hours, 30 days of vacation and home office options
• Further training: A comprehensive further training offer over an own training team as well as an own annual training budget
• Well-being: Health programs, a free fitness studio on our campus and regular employee events
• Comfort: Very good public transport connections and free parking spaces including charging facilities for e-mobility. A canteens with a varied selection of meals and discounts in our stores and at many partner companies

Please note that all job opportunities at METRO AG require that you live in/move to Germany and can be in office in Düsseldorf at least 2 times per week. We don't offer 100% remote opportunities.