Are you looking for a role that focuses on Vulnerability Management, in a company that is looking to future proof their processes? We are working with a global client who are building out a “next-gen” security team. They have multiple arms to their business and are looking for someone who understands security and vulnerability management.

The main crux of this role is dealing with the rest of the business to ensure that everyone is doing their bit to reduce vulnerabilities whilst also being a part of a think tank that is going to switch from a reactive VM team, to a proactive one. Improving their processes and working closely with the hunting and IR teams. You will still play a part in working with the remediation teams.

This can be a fully remote role, however the client is based near Milton Keynes and travel to site perhaps once a month would be ideal.

The Role:

• Produce timely, accurate and relevant vulnerability management reports

• Tracking vulnerabilities and ensuring remediation SLAs are met

• Investigate and respond to vulnerability data and alerts

• Plan and deliver vulnerability remediation plans

• Support the bug bounty process

• Help shape processes and procedures for vulnerability management

• Identification of potential vulnerabilities and threats to the network

• Researching and analysing vulnerability patterns and trends

• Support incident response as required

• Establish and maintain strong, collaborative working relationships with key stakeholders

• Responsible for establishing, maintaining and using operational security standards, processes, procedures and guidelines

• Monitor internal and external security threats and known vulnerabilities, and ensure that technical controls are aligned to these

• Help Security Operations develop and operate processes and procedures that counteract threats and vulnerabilities

• Manage and tune vulnerability management tooling

• Work with external organisations keep abreast of emerging trends, technologies, and regulations

KEY SKILLS REQUIRED

• Minimum of 2 years’ experience of conducting vulnerability management analysis and remediation activities

• Knowledge of vulnerability management processes and vulnerability scoring

• Experience using vulnerability management tooling, including Qualys.

• Experience of supporting security incident response

• The jobholder must have a thorough understanding of the wider threat landscape, attack vectors and actors

• Experience of using the Cyber Kill Chain and Mitre ATT&CK framework

• Experience using bug bounty process

• Excellent research skills

• Very good written and oral communication skills

• Ability to effectively prioritise and execute tasks in a high-pressure environment

• Ability to conduct and direct research into security vulnerabilities

• Strong interpersonal skills are essential, as the jobholder must be able to operate effectively at all levels within and outside of the business

• Ability to build strong relationships and influence decisions with internal and external stakeholders

• Establish mechanisms, behaviours and culture to encourage the protection of business information and information systems

This is a great opportunity to join a company that wants to stay ahead of the industry. If you are interested then go ahead and apply now.