Vulnerability Management Senior Analyst- £60,000- £70,000- Hybrid- London
Company: The Guardian
Location: London, Kings Cross
Harvey Nash are proud to be working as a retained recruitment partner for The Guardian, a trusted and globally recognised news organisation, at the forefront of digital journalism. We are seeking a Vulnerability Management Senior Analyst to join our Information Security team. If you are passionate about identifying and mitigating security vulnerabilities and have a strong background in vulnerability management, we want to hear from you.
Key Responsibilities: As a Vulnerability Management Senior Analyst, you will play a pivotal role in shaping and executing key processes and technology for vulnerability scanning, management, and remediation.
Your responsibilities include:
* Designing, maintaining, and continuously improving end-to-end vulnerability management processes within the Information Security team.
* Reviewing and validating vulnerabilities using available data sources and tools, and identifying new data sources as needed.
* Creating and maintaining workflows, reports, configurations, and dashboards on vulnerability management platforms. Managing platform releases, upgrades, and enhancements.
* Collaborating with Security Operations Centre colleagues to respond to zero-day vulnerabilities and severe threats affecting our system landscape.. Researching and evaluating how current and new vulnerabilities can be exploited in our system landscape to assist in prioritizing remediation actions.
* Supporting technology teams and asset owners with the remediation of identified vulnerabilities and providing advice on appropriate mitigation solutions.
* Providing regular analysis and reporting against KPIs on vulnerability management.
* Advocating for information security across the organization and fostering a culture of risk awareness and mitigation.
* Approving exceptions related to deferrals and false positive requests.
Key Skills: To excel in this role, you should have:
* A strong understanding of security threats and compromise methods.
* Excellent communication skills, both written and verbal, and the ability to collaborate with colleagues across the business.
* Strong analytical abilities to understand data flows, perform assessments, and draw conclusions.
* Experience in vulnerability management.
* Operational level experience in domains such as vulnerability scanning, vulnerability management, and vulnerability remediation.
Knowledge and Experience:
Essential:
* Strong understanding of the vulnerability landscape, security threats, and compromise methods.
* Previous experience working as a vulnerability analyst.
* Experience in configuring, maintaining, and operating security toolsets, such as SIEM, SOAR, and/or vulnerability management tools.
Desirable:
* Professional security certifications such as CEH (Certified Ethical Hacker), CPT (Certified Penetration Tester), CEPT (Certified Expert Penetration Tester), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager).
* A bachelor's degree in Information Security, Computer Science, Engineering, Technology, or a similar degree.
The Guardian is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and welcome all qualified applicants regardless of race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age
If the above sounds like something you would be interested in pursuing please apply via this posting and or E-mail (see below) for more information.
Posted Date: 08 May 2024
Reference: JS-BBBH100961
Employment Agency: Harvey Nash IT Recruitment UK
Contact: Ben Sams