Security Lead- Vulnerability Management
- Location Swindon Head Office, South West England
- Salary £35,309 - £51,002
- Contract type Permanent
- Closing date 21/11/2018
- Ref R001900678
• A Vulnerability Management Cyber Security professional based at Nationwide house Swindon.
• £35309 - £51002 depending on experience. On a permanent contract in the Security department.
• Send in your application by 21st November 2018.
As the cyber world becomes more advanced, with greater reliance put on computer systems, we need to be sure we are keeping our equipment in a safe and well protected state. With the introduction of Open Banking, and Cloud-based services, new technologies will be presenting new opportunities and challenges for Vulnerability Management. This has led to an opportunity to expand our Vulnerability Management team. So we are looking to recruit a security professional with a strong interest in the technical aspects of cyber security, specifically vulnerability identification, analysis and reporting. The role will be working with Industry standard vulnerability scanners to identify, analyse and, working with partners, remediate the vulnerabilities that are found.
For more information, please contact the hiring manager Clive Whitehouse or the Resourcing Manager, Tim Manton
Who we're looking for
As a minimum requirement you’ll:
- have a good technical understanding of vulnerabilities and patch management
- have a good understanding of Windows and other operating systems
- have significant experience in technology and/or information security
- have strong communication skills both verbal and written that has been demonstrated by influencing key stakeholders
- be adept in dealing with complex issues both in a technical and non-technical context
- have experience of industry standard security tools– g. Qualys, WSUS, CM2012 and Service Now
- have experience with standard tools such as MS Office and SharePoint to create, manipulate, manage and share report data.
It would be nice if you also had:
- An industry recognised qualification such as Security+, CISSP or CISM
- Experience in the financial sector and with PCI-DSS
What you'll be doing
In this role you will be expected to work proactively to ensure that accurate reports are generated in a timely manner, and vulnerabilities, including the risk they present, are reviewed and understood by the wider team and key stakeholders.
You will be dealing with both internal and external stakeholders who are tasked with remediating vulnerabilities and ensuring that any changes required to improve the security of the systems are achieved in good time.
You will get involved in both vulnerability detection and vulnerability remediation thus a good appreciation of the Windows platform, Networking and general security topics and terminology will be important – examples being SQLi, XSS, DDoS and MitM.
PCI-DSS also informs many of the actions that need to be taken and an understanding of this would be advantageous.
Accuracy and an eye for detail is critical in this role to ensure vulnerabilities are assessed correctly and driven through to resolution.
The extras you'll get
If you put a lot in, it’s only fair you should get a lot out. So if you help us do the right thing for our members, we’ll help further your career with us.
As part of our team you’ll get:
- Access to training to help you progress and develop your technical skills and career
- Pension scheme where if you pay in 7% we’ll top it up to 23%
- Life assurance worth 8x your salary
- 24 days’ holiday plus bank holidays
- The ability to 'buy’ up to 10 days more holiday
- Flexible benefits scheme giving you access to discount vouchers at various retail outlets
- Access to an annual performance related bonus scheme