Vulnerability Management Security Engineer

Vulnerability Management Security Engineer Join to apply for the Vulnerability Management Security Engineer role at Adevinta. We’re Adevinta, a global leader in digital marketplaces. Our household name brands, including Marktplaats in the Netherlands, mobile.de in Germany and leboncoin in France, reach hundreds of millions of people every month. We’re all about matchmaking, and our sites help people find whatever they’re looking for in their local communities – whether it’s a car, an apartment, a sofa or a new job. Every connection made or item found makes a difference by creating a world where people share more and waste less. Our brands are supported by global Tech Hubs in Barcelona, Amsterdam, Paris and Berlin, developing common global products and innovation platforms that all of our brands can use. This means using cutting‑edge technology to create highly scalable, customizable and secure products and components that free up development time and leverage our access to global data. Responsibilities Conduct and manage bug bounty programs, perform and manage penetration testing, and lead threat modelling sessions. Automate internal flows for security data aggregation. Integrate security tools by automated means. Automate the handling of threat intelligence and environment data to enhance security controls. Ensure our assets properly report events to the SIEM, and support the definition of rules for generating alerts. Support the other InfoSec teams as a subject‑matter expert. Work in a hybrid remote/on‑site environment with the team spread across different geolocations (Adevinta’s hubs: Barcelona & Amsterdam). Travel occasionally, mainly inside the EU, to our main hubs. Possibility of on‑call duty. Qualifications You have a hacker mindset, an open mindset, technical skills and a passion for security. Strong analytical and problem‑solving skills, with the ability to synthesize complex data into actionable insights. You recognize the need for automation to handle problems at scale, and you can implement that automation. Proficiency in cloud operations, particularly in AWS, but ideally also in GCP. Excellent fundamental knowledge of network, protocol, system and application security, as well as industry‑standard strategies and frameworks. Software development skills and database knowledge. Excellent communication and interpersonal skills, with the ability to build relationships and influence others. Ownership mindset and ability to collaborate with others. Fluent in English (spoken and written). Comfortable in a multicultural environment. Nice To Have Proficiency in threat modelling. Proficiency on Secure Development Lifecycle principles. Experience with cloud security services like AWS GuardRails, SCPs, Security Groups, IAM, WAF. Notions of incident response. Public or private presentations. Open‑source contributor. Participation in conferences and training. Certifications. Membership in bug bounty programs, CTF player or member of ethical hacking communities, recognition in the Hall of Fame, CVE mentions or vulnerability reporter. Benefits An attractive Base Salary Participation in our Short Term Incentive plan (annual bonus) Work From Anywhere: Enjoy up to 20 days a year of working from anywhere A 24/7 Employee Assistance Program for you and your family, because we care Win together, lose together is one of our key behaviours. At Adevinta you will find a collaborative environment with an opportunity to explore your potential and grow. On top of these, we also provide a range of locally relevant benefits. Wanna know more? Apply and ask our recruiters Adevinta is an equal opportunity employer and we value diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status or disability status. If you feel like you don’t meet all of the requirements for this role but are interested, please consider applying anyway. Research suggests that women and individuals from underrepresented groups may self‑select out of opportunities if they don’t meet 100% of the job requirements. We strongly encourage people from historically excluded groups to apply and look forward to speaking with you. Seniority Level Mid‑Senior level Employment Type Full‑time Job Function Information Technology Industries Internet Marketplace Platforms #J-18808-Ljbffr