Senior Cyber Security Vulnerability Manager
| Posting date: | 06 January 2025 |
|---|---|
| Salary: | £55,557 to £78,607 per year |
| Hours: | Full time |
| Closing date: | 19 January 2025 |
| Location: | FY4 5ES |
| Company: | Government Recruitment Service |
| Job type: | Permanent |
| Job reference: | 382515/1 |
Summary
Lead the triage of vulnerabilities, ensuring mitigation measures are implemented, managing the life cycle of vulnerability management for a set of assets, providing tailored advice on ways to improve control mechanisms, mitigate risks, recommend remediation strategies and provide advice on complex configuration changes in support of vulnerability remediation. Leveraging threat intelligence, you'll work closely with other security teams to develop strategic mitigation measures and collaborate with stakeholders to create and execute tactical plans.
A key aspect of the role is validating configurations across interconnected and complex systems. Your expertise will enable you to translate industry standards into tailored policies, procedures, and guidelines, driving improvements in our security posture and championing best practices across the organization.
In addition, you will develop and implement vulnerability management programs, create assessment templates, and ensure compliance with regulatory and audit requirements. Leading a small team, you will provide mentorship and foster a collaborative approach to achieving security excellence.
If you are ready to make a meaningful impact by safeguarding critical systems and driving innovation in cybersecurity, we encourage you to apply and join our dedicated team in a dynamic and rewarding environment.
Please note this role requires you to pass Security Check clearance. For further information, please see 'Selection process details'.
This role ensures complex information systems are managed consistently within the organisation’s KPIs and security risk strategy, to ensure DWP systems are protected by quickly identifying and remediating vulnerabilities and risks to mitigate/prevent any emerging security risks. They.
- Utilise expert knowledge to steer and inform the investigation of cyber security vulnerabilities, developing and agreeing on remediation and prioritisation actions within set KPIs, across various Digital functions, ensuring the protection of DWP systems.
- Lead a team of Vulnerability Analysts to manage capability and resource levels and develop their skills, knowledge and capabilities.
- Lead analysis of IT security risks/vulnerabilities identifying and communicating solutions to Directors, Senior Stakeholders to manage threats to DWP systems.
- Own the impact of any emerging vulnerabilities to inform vulnerability strategies with the aim of strengthening security protection across DWP systems.
- Advise and challenge on relevant data extracts to meet MI requirements to present and inform Directors/key stakeholders of any emerging risks.
- Provide mentoring & guidance to Vulnerability Management Team members to ensure best practices and procedures are followed.
- Lead work across the wider function of Security Team to monitor emerging threats and vulnerabilities and proactively develop mitigation strategies.
- Contribute to the delivery of security awareness to meet the objectives set out in Government Cyber Security Strategy.
When starting the role, it would beneficial to hold certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP), or possess equivalent security experience. However, these are not essential.
Proud member of the Disability Confident employer scheme