Attack Surface Management Specialist

We’re AD/01, the tech studio that builds the future of food retail. Whether it’s in-store aisles, online baskets, or behind-the-scenes operations, we innovate the daily food experiences for farmers and families, grandmas and greengrocers, and pickers and packers alike.

We’re part of the Ahold Delhaize network, one of the world’s largest global food retail groups and a leader in both supermarkets and e-commerce. With 19 strong local brands in Europe, the United States, and Indonesia, we create a meaningful difference for our customers, our people, and the world around us. And we’re looking for the freshest minds excited to create the recipe for change.

Your new role and environment.

As Attack Surface Management Specialist, you will be joining our Technology team. Technology is vital to Ahold Delhaize and its entire family of brands.

As a global team, we support and accelerate the tech transformation and IT optimization of our company and brands. By providing the best possible IT strategy, infrastructure and technology, we enable the company to strengthen our position as a leading omnichannel retailer.

We’re a highly energetic team – our members are from different cultures, all over the world – with a very innovative mindset and a truly global view.

We collaborate regularly across countries and brands. We are eager for continuous transformation within an ever-changing environment, constantly seeking new, innovative technologies and processes to stay ahead of the curve.

Key responsibilities of your role.

Your role is highly diverse and encompasses various responsibilities. Here are the key ones:

• Build and maintain relationships with stakeholders in operating companies, coordinating communication of vulnerability report findings for remediation.
• Analyze vulnerability report findings to assess risks and prioritize remediation actions.
• Aggregate and enhance data from multiple sources, including vulnerability and code scanners, to support comprehensive threat analysis.
• Monitor vulnerability scanning processes and outcomes, track trends, and ensure timely remediation of identified vulnerabilities.
• Handle responsible disclosures by validating reproducibility, assessing impact, and determining appropriate remediation strategies and required effort.
• Communicate findings to system owners and ensure adherence to Service Level Agreements (SLAs) based on vulnerability criticality.
• Maintain a repository of identified vulnerabilities and associated mitigation controls.
• Provide leadership and direction to Vulnerability Management Analysts, ensuring effective team operations and reporting to the Head of Attack Surface Management.

What’s in it for you?

We ask a lot. (We’re looking for the best, after all). But we offer a lot, too.

So, what do we have in store for you? We offer flexible hours and a hybrid working model, allowing you to work both from home and at the office. We provide competitive benefits to support health, well-being and your professional growth. This includes: a significant budget on benefit platform and a yearly bonus. At AD01 we welcome everyone, just the way you are, and encourage individual growth with valuable opportunities and a worldwide across-brand network.

Requirements.

We think you’ll be best geared for success if you can meet the following requirements:

• Bachelor’s degree or equivalent technical training in Information Technology, Information Systems Security, Cybersecurity, or a related field (master’s degree is preferred).
• 5+ years of relevant IT and Information Security experience.
• Required hands on experience with Rapid7; Microsoft Defender for Endpoint experience is a plus.
• Technical Cybersecurity or IT engineering background with a focus on Vulnerability Operations.
• Ability to translate business requirements into practical, actionable technical implementation plans.
• CISM, CISSP, or other relevant technical certifications required.
• Strong stakeholder management, communication, and presentation skills.
• Demonstrated results oriented mindset with a focus on achieving goals.
• Familiarity with the retail industry.
• Familiarity with IT, Cloud, and Cyber engineering tools, processes, and methodologies.
• Excellent command of written and spoken English.

Apply now

If you’re excited to help us grow, then please apply now. If you feel like you might not tick all the boxes but have the skills and personality we’re looking for, then please also apply now!

Got questions? Don’t be shy. Madalina Pungaru at [email protected], has answers.

For us, diversity means being inclusive of thoughts and skills, generational differences, LGBTQ+, gender, race and ethnicity, disabilities, nationalities and more. We accept everyone for who they are.