Senior Bug Bounty & Vulnerability Management Lead

Nivel del puesto: Profesional / Senior

Ubicación:

BARCELONA, B, ES, 08005

Área de conocimiento: Ingeniería informática y tecnológica

Unidad: Allianz Technology

Entidad contratante: Allianz Technology SE Spain Branch

Tipo de puesto: Jornada completa

Trabajo en remoto: Trabajo híbrido

Empleo: Indefinido

ID: 100620

Cluster de la posición: Non-Executive

About the job

Are you passionate about cybersecurity and eager to make a real impact by strengthening the security posture of a global organization?

We are looking for a Senior Bug Bounty & Vulnerability Management Lead to drive and evolve Allianz’s Bug Bounty and Vulnerability Disclosure programs.

In this role, you will work at the intersection of security research, vulnerability management, and stakeholder engagement, collaborating with global teams, external researchers, and platform providers to identify and remediate security risks.

As part of the Allianz Vulnerability Management (AVM) global team, you will play a key role in enhancing our attack surface visibility and vulnerability response capabilities across a complex, international environment.

What you do

Own and continuously evolve Allianz’s Bug Bounty and Vulnerability Disclosure Programs
Define program scope, rules of engagement, and reward structures
Act as the main point of contact for external researchers and platform providers
Review, validate, and prioritize vulnerabilities, ensuring accurate assessment and remediation
Collaborate with IT and security teams to drive end-to-end vulnerability resolution
Provide insights and reporting on program performance, trends, and key metrics
Contribute to broader Vulnerability Management and Attack Surface initiatives

What you bring

5+ years of experience in cybersecurity, including vulnerability management or bug bounty programs
Strong knowledge of application security and common vulnerabilities (OWASP Top 10)
Experience with bug bounty platforms such as HackerOne or Bugcrowd
Understanding of SDLC practices and security integration
Familiarity with MITRE ATT&CK and vulnerability analysis
Experience with tools such as Qualys, Nessus, Jira, Confluence
Strong stakeholder management skills with the ability to translate technical risks into business impact

What we offer

We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

About Allianz Technology

With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider and delivers IT solutions that drive the group's digitalization. With more than 11,000 employees in over 20 countries around the world, Allianz Technology is tasked to run, optimize, transform and innovate the infrastructure, applications and services together with Allianz companies to co-create the best customer experience.

We service the entire spectrum of digitalization – from one of the industry's largest IT infrastructure projects that spans data centres, networks and security, to application platforms ranging from workplace services to digital interaction.

In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz.

Find us at: www.linkedin.com/company/allianz-technology.

Commitment to Integrity, Fairness & Inclusion

Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us.

We at Allianz believe in a strong inclusive culture that encourages people to speak their minds, get involved and question the status quo. We are proud to be an equal opportunity employer and encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love, or what you believe in. We therefore welcome applications regardless of race, ethnicity or cultural background, age, gender, nationality, religion, social class, disability, sexual orientation, or any other characteristics protected under applicable local laws and regulations.

To Recruitment Agencies

Allianz Technology has an in-house recruitment team that sources great candidates directly. Therefore, Allianz Technology does not accept unsolicited resumes from agencies or search firm recruiters.

When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.