Service Coordinator - Security and Threat (JB- Ser - CSP) London, England
Salary: | £ competitive |
Perform an interface and coordination role between customer LBG and IBM platform teams for:
o Security Patch Notifications (SPN/EPN)
o Security Component Updates
o Security Vulnerabilities
o Security Policy Non-compliance
• Identify the latest security threats
Responsibilities of a Service Coordinator:
Provide a single point of contact for customer to assign security patch notifications (SPN/EPN), Security Component Updates, Vulnerability actions and Non-compliance actions
Provide a single point of contact between the clients platform teams and customer security teams regarding identified threats and vulnerabilities.
Monitor the team email task ID for new customer requests
In the case of “critical” vulnerability and non-compliance actions assigned by customer
Validate requests from the customer (Security patch notifications (SPN/EPN), Security Component Updates, Vulnerability actions and Non-compliance actions)
Identify assignee's (platform teams, platform focals, product managers) and assign:
o Security patch notifications (SPN/EPN)
o Security component updates
o Vulnerability actions
o Non-compliance actions
Ensure that the platform teams provide an initial SPN/EPN response and that this is shared with the customer
Provide guidance to the platform teams on Risk Management and Waivers
Ensure that exceptions reported by the platform teams are recorded and shared with the customer Cyber Security Team
Liaise with the platform focal to track and record the status of Security Patching as well as status of remediation of vulnerabilities and non-compliance's
Share Security Patch status with the customer, including confirmation of Security Patch completion (and completion certificate where applicable).
o Security Patch Notifications (SPN/EPN)
o Security Component Updates
o Security Vulnerabilities
o Security Policy Non-compliance
• Identify the latest security threats
Responsibilities of a Service Coordinator:
Provide a single point of contact for customer to assign security patch notifications (SPN/EPN), Security Component Updates, Vulnerability actions and Non-compliance actions
Provide a single point of contact between the clients platform teams and customer security teams regarding identified threats and vulnerabilities.
Monitor the team email task ID for new customer requests
In the case of “critical” vulnerability and non-compliance actions assigned by customer
Validate requests from the customer (Security patch notifications (SPN/EPN), Security Component Updates, Vulnerability actions and Non-compliance actions)
Identify assignee's (platform teams, platform focals, product managers) and assign:
o Security patch notifications (SPN/EPN)
o Security component updates
o Vulnerability actions
o Non-compliance actions
Ensure that the platform teams provide an initial SPN/EPN response and that this is shared with the customer
Provide guidance to the platform teams on Risk Management and Waivers
Ensure that exceptions reported by the platform teams are recorded and shared with the customer Cyber Security Team
Liaise with the platform focal to track and record the status of Security Patching as well as status of remediation of vulnerabilities and non-compliance's
Share Security Patch status with the customer, including confirmation of Security Patch completion (and completion certificate where applicable).