Vulnerability & Compliance Analyst (BBBH13450) Stevenage, England
| Salary: | GBP60 - GBP65 per hour |
My client is looking for a Vulnerability and Compliance Analyst to join them on an initial 12-month basis. The Vulnerability and Compliance Analyst will support the IM SOC to defend against cyber threats and vulnerabilities by ensuring the IM and Manufacturing environments are following best practice and proactively managing identified vulnerabilities that could be exploited
Role: Vulnerability and Compliance Analyst
Pay: £65 per hour via Umbrella
Location: Stevenage or Bolton
Contract: 12 Months
Hours: Monday – Friday, 37 hours per week
Security Clearance: Security Clearance in Place
Responsibilities:
· Report and track remediation activities affecting all Infrastructure and applications within the companies agreed scope focussing on IoT and OT within IM and manufacturing.
· Support compliance and due diligence led activities, including regulatory updates.
· Lead on discovery activities and audits of environments.
· Establish relationships and collaborate with teams and stakeholders to create both tactical and strategic plans as it relates to vulnerability management.
· Champion security best practice within technology and be regarded as the ‘go-to’ individual for security vulnerability management.
· Provide security and remediation advice to cross-business stakeholders at a technical level.
· Proactive identification and communication of external themes and threats.
· Advise technical and non-technical audiences on appropriate prioritization of patch deployment.
· Manage vulnerability remediation by suppliers and teams through re-test & closure.
· Help drive security maturity in vulnerability management and security in general across the business, through positive engagement and teaching.
· Maintain and further improve the scanning scope and capability of the vulnerability scanning service, through automation and tooling.
Skillset/experience required:
· Familiarity with Infrastructure and web application scanning tools (e.g. Qualys, Nessus) and relevant remediation management/risk tools supported in the Security Operations Centre (SOC)
· Managing vulnerabilities 2+ years (planning and remediation)
· A demonstrable knowledge of Vulnerability lifecycle management (MITRE) and IT/ OT/ IoT vulnerability remediation plans
· Experience or knowledge of risk management frameworks (e.g CIS, NIST)
· Sound understanding of network/infrastructure and web/mobile application weakness and anti-patterns (CWE, OWASP).
· An in depth understanding of cyber security technologies and applicable security controls
· A good understanding of information security principles and best-practices
· Ability to carry out risk assessments
· Supplier engagement and collaboration
If you are interested in applying for this position and you meet the requirements, please send your updated CV to: Natalie Dalkin at Line Up Aviation
Line Up Aviation has carved its own place in the recruitment of Aviation and Aerospace personnel all over the world for more than 30 years. We work with some of the industry’s best-known companies who demand the highest standard of applicants.
“Follow @LineUpAviation on Twitter for all of our latest vacancies, news and pictures from our busy UK Head Office. Interact with us using the #LineUpAviation tag at anytime! Thank you for your follow!”