Senior Vulnerability Management Engineer
Recruiter
Next
Listed on
22nd January 2021
Location
Leicester
Salary/Rate
Upto £45696
Type
Permanent
Start Date
ASAP
This job has now expired please search on the home page to find live IT Jobs.
Working in the Information Security team you will focus on vulnerability management across the Next technology estate. You will be responsible for identifying, assessing, validating and communicating new vulnerabilities across the other technical teams, ensuring the vulnerability management process is followed. Where required you will work with other IT teams to provide guidance and recommend mitigation strategies for vulnerabilities. As a Senior Vulnerability Management Engineer you will be tasked with the management of third party penetration tests. You will also help manage and configure our vulnerability scanning tools as well as administering Next's Bug Bounty programme. The role also requires you to review incoming threat intelligence in order to assess its relevance to our business, where appropriate you will provide reports on threats of interest and work with the relevant teams to proactively mitigate any risk. You will also be expected to maintain an awareness of the changing threat landscape and industry standards, proactively working to identify opportunities to improve the security of our environment and counter new threats. As a Senior Vulnerability Management Engineer you will also help mentor more inexperienced members of the team. You will also take a lead role in coordinating and overseeing efforts to mitigate significant threats or vulnerabilities identified by the team.Key Responsibilities Manage and maintain Vulnerability Scanning tool. Plan and coordinate Penetration Testing. Manage Next's Bug Bounty programme. Identify and execute relevant Red vs Blue scenarios. Ensure all relevant vulnerabilities are correctly triaged, risk assessed, logged and assigned to remediation teams. Support remediation teams with remediation strategies. Review threat intelligence and advise on recommended mitigation strategies where appropriate. Assist Incident Response team with the investigation and resolution of Security Incidents when required. Manage and maintain metrics and reporting to demonstrate the effectiveness of our vulnerability management programme. Subject matter expert for the Vulnerability Management team and helps coordinate efforts when managing emergency remediation/mitigation. Create and maintain operational procedures, configuration and technical documentation to a high standard. Maintain an awareness of new and emerging security threats and trends. Act as a mentor for more inexperienced members of the Vulnerability Management team. Criteria Essential Experience managing and maintaining a Vulnerability Management tool. In depth understanding of Information Security including malware, emerging threats, attacks, and vulnerability management. 5+ years of proven Information Technology experience with an excellent understanding of network protocols and server infrastructure. Windows Server and/or Linux experience. Ability to take a lead role in coordinating the timely diagnosis and resolution of major issues. Adheres to and promotes high standards. Understand and operate change management A team player who is hardworking and self-motivated. Ability to effectively plan and prioritise workloads, and to measure and report on current progress. Ability to remain calm under pressure and clearly communicate to all levels of management. Excellent attention to detail. Adheres to and promotes high standards. Desirable Experience with security or compliance standards such as PCI-DSS or ISO27001. Understanding and experience of working for a Retail company. Relevant industry recognised security qualification. Benefits Bonus Scheme Pension Scheme ShareSave Scheme Life Assurance Staff Discount On-site Nursery About Next You know Next, but did you know we're a FTSE-100 retail company employing over 43,000 people across the UK and Ireland. We're the UK's 2nd largest fashion retailer and for Kidswear we're the market leader. At the last count we have over 540 stores, plus the Next Online and it's now possible to buy on-line from over 70 countries around the world! So we've gone global!
