This job has expired

Risk and Compliance Management (RCM) Vulnerability Manager

Employer
Hortor Limited
Location
UK
Salary
Competitive
Closing date
15 Sep 2021

View more

Sector
Technology & New Media
Contract Type
Permanent
You need to sign in or create an account to save a job.

Job Details

Risk and Compliance Management (RCM) Vulnerability Manager to join the company's Secure Cloud Security team to be responsible for ensuring the Secure Cloud platform meets the Client's requirements for Information Assurance and Accreditation against relevant Security Policy, Standards and Guidelines. This will include:

o Planning / oversight, direction, scoping and managing the annual execution of a number of ITHC's under the CHECK Scheme in order to support the Client's requirements and assist with the implementation of effective IT security in accordance with local policy;

o Liaison with Client Account, Associated Partners and third-party suppliers;

o Be the contact point for ITHC reports, subsequent contextualisation and liaison with the company's technology Engineering and Run support teams for the prioritisation, and subsequent remediation of ITHC defects and vulnerabilities;

o Preparation and delivery of Assurance artefacts to the Client Account to support Accreditation submissions to the Authority;

o Utilisation of Vulnerability Management tooling (Nexpose) to identify and prepare ITHC target list (multiple individual test targets);

o Conduct an assessment of new vulnerabilities and assign an appropriate classification against a recognized and defined criticality matrix;

o Continuously monitoring security posture of the Secure Cloud platform identifying security vulnerabilities through the innovative use of relevant security tooling (VM/SIEM/AV);

o Ensuring ITHC findings and identified vulnerabilities are tracked and resolved in a timely manner, using Service Management tooling;

o Develop and improve existing processes and procedures with respect to Vulnerability Management and ITHC activities.

EXPERIENCE AND KNOWLEDGE

o NCSC CCP SIRA Practitioner, plus one of the following:

o Certified Cloud Security Professional (CCSP),

o Certified Information System Security Professional (CISSP),

o Certified Information Security Manager (CISM)

o Vulnerability Management and Risk Management in high secure environments,

o Exercises independent judgment within defined practices and procedures to determine appropriate action. Follows established guidelines and interprets policies. Evaluates unique circumstances and makes recommendation

o Experience working with technical and non-technical teams across a broad range of IT disciplines and geographies.

SC Cleared would be an advantage

SKILLS / BEHAVIOURS

o Excellent English Language communication skills (written and spoken)

o Good negotiation and influencing skills

o Strong interpersonal skills and able to work with staff at all levels in an organization

o Proactive thinking - the ability to come up with options and solutions

o Organised and methodical and not afraid to seek support

BENEFITS

o 25 DAYS Holiday

o Pension cont up to 6%

o Flex fund according to salary- Healthcare/Dental/Childcare vouchers/Cycle to work
You need to sign in or create an account to save a job.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert