Summary: The Cyber Security Vulnerability Management Analyst role involves managing and assessing vulnerabilities within a cyber security framework for a 12-month contract. The position requires a proactive approach to risk management, automation of reporting, and collaboration with various stakeholders. The analyst will utilize advanced analytical skills and scripting knowledge to enhance vulnerability management processes. This role is fully remote and classified as inside IR35.

Key Responsibilities:

• Understanding vulnerability lifecycles, standards and ratings
• Risk assessing findings to determine appropriate response with a proactive approach to recording, management and escalation of risks
• Increasing the quality of vulnerability reporting automation to reduce manual effort
• Advanced analytical and problem-solving techniques with practical experience of scripting with Python & Power BI
• Providing advice on appropriate Vulnerability Management controls across technical disciplines, with experience of Windows or RHEL OS platforms and an understanding of patching processes and automation options
• IT and Information Security best practice
• Team working and the ability to be self-directed on task completion
• Demonstrating a professional 'can do' attitude and high levels of motivation
• Working under pressure, managing multiple priorities in a rapidly changing and dynamic environment
• Collaborating with internal and external parties to provide excellent outcomes and customer service

Key Skills:

• Knowledge of vulnerability scanning technologies
• Experience in analysis of vulnerabilities identified against one of infrastructure, assets or code
• Working knowledge of the Qualys application and its core modules
• Self-driven qualities and ability to work independently as well as part of a team
• Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way
• The ability to engage stakeholders to influence decisions to improve security across the company
• Industry related security qualification (e.g. CISSP, CISM) or equivalent practical security experience
• Experience in improvements programmes to reduce risk, increase quality and reduce manual effort, and delivering control improvements across multiple technical disciplines
• Knowledge of ITIL framework, including risk and change management

Salary (Rate): 265

City: Glasgow

Country: United Kingdom

Working Arrangements: remote

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT