Senior Vulnerability Management consultant

Senior Vulnerability Management consultant

Posted 5 days ago by Harvey Nash IT Recruitment UK

Apply
£470 Per day
Inside
Hybrid
City of London, UK
Apply
Application Security Cloud Computing Cloud Technology External Auditing Investments Java (Programming Language) Management Management Consulting Management Process Microsoft 365 Open Web Application Security Project (OWASP) Secure Coding Security Awareness Security Testing Sherwood Applied Business Security Architecture Software Coding SQL (Programming Language) Stakeholder Management Vulnerability Vulnerability Management

Summary: Senior Vulnerability Management Consultant needed for a leading investment bank in London, focusing on vulnerability management across infrastructure, cloud, and enterprise applications. The role involves operationalizing reports, preparing documentation, and providing consulting services to enhance security measures. The position requires strong expertise in vulnerability management tools and processes, with a hybrid working arrangement and inside IR35 classification.

Key Responsibilities:

  • Provide vulnerability management expertise involving infrastructure, cloud and enterprise applications. Primary contact for the companies vulnerability management involving processes, reporting, enhancements, compliance and interacting with business stakeholders.
  • Operationalize weekly vulnerability status reports for senior leadership including UK CISO on company vulnerability management KPIs/KRIs.
  • Preparation of vulnerability management process and procedure documentation.
  • Provide consulting services to the vulnerability management team to assist in their security design to identify potential risks.
  • Review the security issues and recommend the appropriate controls to mitigate these risks.
  • Provide security awareness to clients and business groups to drive action on vulnerabilities.
  • Provide support to other consultants through mentoring and peer reviews of work products as required.
  • Provide ad hoc consulting services to the general user community.

Key Skills:

  • Experience working with vulnerability management tools and data such as Tenable, Qualys, Rapid 7, Microsoft Defender, Aqua, Palo Alto Xpanse.
  • Jira to manage project work, timelines and operational tickets.
  • 5+ years of relevant experience.
  • Possess strong understanding of vulnerability management processes, procedures and principles.
  • Exposure to application security best practices such as secure coding, security testing techniques.
  • Expert knowledge of Security Policies and Standards.
  • Expert knowledge of Information Security practices.
  • Knowledge of compliance, audit and privacy policies and regulations.
  • General knowledge of security technology.

Salary (Rate): £470 per day

City: City of London

Country: UK

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Senior Vulnerability Management consultant sought by leading investment bank based in London.

*Inside IR35* - Hybrid working
Daily responsibilities:

  • Provide vulnerability management expertise involving infrastructure, cloud and enterprise applications. Primary contact for the companies vulnerability management involving processes, reporting, enhancements, compliance and interacting with business stakeholders.
  • Operationalize weekly vulnerability status reports for senior leadership including UK CISO on company vulnerability management KPIs/KRIs
  • Preparation of vulnerability management process and procedure documentation
  • Provide consulting services to the vulnerability management team to assist in their security design to identify potential risks
  • Review the security issues and recommend the appropriate controls to mitigate these risks
  • Provide security awareness to clients and business groups to drive action on vulnerabilities
  • Provide support to other consultants through mentoring and peer reviews of work products as required
  • Provide ad hoc consulting services to the general user community

Essential:

  • Experience working with vulnerability management tools and data such as Tenable, Qualys, Rapid 7, Microsoft Defender, Aqua, Palo Alto Xpanse.
  • Jira to manage project work, timelines and operational tickets.
  • 5+years of relevant experience
  • Possess strong understanding of vulnerability management processes, procedures and principles
  • Exposure to application security best practices such as secure coding, security testing techniques
  • Expert knowledge of Security Policies and Standards
  • Expert knowledge of Information Security practices
  • Knowledge of compliance, audit and privacy policies and regulations
  • General knowledge of security technology

Nice to have:

  • Experience with PowerBI
  • Programming skills and experience (python, Java, SQL)
  • Technical network skills
  • Knowledge of OWASP, SANS, NIST, ISO 27001, ISF or other security-related practices
  • Previous Banking/Financial Industry experience
  • CISSP, CISA, CRISC, CSSLP, SABSA certifications

Skills & Competencies:

  • Vulnerability management
  • Risk reporting
  • Programming
  • Data management

Please apply within for further details - Matt Holmes

Apply
Similar Jobs
Loading data...