Vulnerability Scanning / CTEM Engineering Lead

ImpacT Hire is supporting one of our clients – a leading international banking group undergoing large-scale digital transformation.
As part of the continued expansion of their Digital Technology Center in Sofia, we are looking for a Vulnerability Scanning / CTEM Engineering Lead to join the Cyber Defense & Base Services domain.
This is a strategic engineering leadership role focused on transforming traditional vulnerability management into a holistic Continuous Threat Exposure Management (CTEM) program.
You will lead the evolution from classical vulnerability scanning toward a modern, risk-driven exposure management framework.
You will work with a team of engineers and operate at the intersection of security engineering, IT operations, and strategic cyber defense.

This role combines:
• Strategic ownership,
• Technical depth in infrastructure and cloud security,
• Engineering leadership,
• Roadmap and KPI-driven delivery.

Responsibilities:
➢ Lead the transformation from traditional Vulnerability Management to a holistic CTEM program, identifying capability gaps and defining strategic improvements;
➢ Own and evolve the Exposure Management ecosystem (Tenable One, XM Cyber, Nessus, Qualys or similar), ensuring optimal configuration, integration, and operational health;
➢ Move beyond CVSS scoring by leveraging Attack Path Management (e.g. XM Cyber) to validate risks based on real exploitability and business impact;
➢ Drive integration of security scanning into the SDLC and support Shift-Left Security initiatives;
➢ Oversee cloud-native scanning posture for Google Cloud Platform (GCP) and Microsoft Azure;
➢ Ensure alignment with industry frameworks and hardening standards such as NIST and CIS Benchmarks;
➢ Define roadmap, KPIs, reporting metrics, and automation workflows to bridge the gap between security findings and IT remediation;
➢ Provide technical direction and mentorship to the engineering team, balancing operational stability with long-term strategic initiatives;
➢ Participate in tool evaluations, proof-of-concepts, and strategic vendor selection processes;
➢ Ensure exposure management practices meet strict banking regulatory expectations.

Requirements:
➢ Minimum 5 years of experience in IT Security, with strong focus on Vulnerability Management / Exposure Management / Infrastructure Security;
➢ At least 2+ years in a technical leadership or engineering lead role;
➢ Hands-on experience with enterprise vulnerability platforms (Tenable, Nessus, Qualys, XM Cyber or similar);
➢ Deep understanding of vulnerability lifecycle management (network, agent-based, container, web application scanning);
➢ Experience with CTEM concepts and attack path simulation;
➢ Strong understanding of Cloud Security (GCP, Azure), CSPM / CNAPP concepts;
➢ Experience integrating security scanning into SDLC and applying Shift-Left Security principles;
➢ Solid knowledge of security frameworks and hardening standards (NIST, CIS benchmarks);
➢ Experience with infrastructure security and system configuration auditing;
➢ Ability to build product roadmaps, define KPIs, and manage backlog in a matrix environment;
➢ Strategic mindset with ability to lead transformation initiatives, not just operate tools;
➢ Excellent English communication skills.

Nice to Have:
➢ Experience in financial services, telecom, or large enterprise environments;
➢ Background in SIEM or broader security operations;
➢ Experience designing exposure management transformation programs;
➢ Project management experience in complex, regulated environments.

Benefits:
➢ 30+ days annual paid leave;
➢ Additional health insurance;
➢ Food vouchers;
➢ Multisport card;
➢ Dedicated learning and certification budget;
➢ Long-term career growth within a large-scale digital transformation program;
➢ Stable environment with strong engineering culture.

If you are currently leading vulnerability or exposure management initiatives and want to shape a modern CTEM program at scale – this is a high-impact strategic opportunity.