Threat & Vulnerability Manager

We believe in better. And we make it happen.  

Better content. Better products. And better careers.  

Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile, SkyQ to Sky Glass, we never stand still. We optimise and innovate.  

We turn big ideas into the products, content and services millions of people love.  

And we do it all right here at Sky. 

What you’ll do

• Lead a team of around a dozen internal and external resources who coordinate the remediation of identified vulnerabilities across various platforms and environments.

• Develop and implement effective remediation strategies and solutions.

• Provide direction to the vulnerability scanning team to prioritise and address high-risk vulnerabilities.

• Collaborate extensively with IT operations, development teams, and security architects to ensure effective vulnerability mitigation.

• Lead relationships with different business units, security leads, and Business Information Security Officers (BISOs) to align remediation efforts with broader business objectives and security policies.

• Guide and mentor team members in remediation techniques and best practices.

• Responsible for development and maintenance of documentation, including remediation guides and playbooks.

• Responsible for management and tracking of remediation efforts, ensuring timely closure and compliance with security policies and standards.

• Communicate effectively with senior stakeholders regarding the status of remediation efforts – including the development, maintenance and continuous improvement of regular, accurate and clear metrics.

• Play a leading role in incident response activities related to vulnerabilities when required.

• Stay updated on emerging threats and adapt remediation strategies accordingly.

• Availability for on-call required.

• After-hours support if necessary.

What you’ll bring

• Extensive experience in vulnerability remediation in a complex IT environment.

• Extensive experience in broader Application & Infrastructure Security domains.

• Strong understanding of various operating systems, applications, and network infrastructures.

• Experience of leading teams to develop and implement effective remediation solutions.

• Solid understanding on Vulnerability scanning tools (Tenable, Qualys, Rapid7) as well as opensource discovery tooling e.g. Nmap.

• Experience in scripting and automation to streamline remediation processes.

• Experience of owning and consistently producing accurate and clear remediation compliance metrics for senior stakeholders.

• Excellent collaboration and communication skills, with the ability to work across various teams and organizational levels.

• Evidence of Cyber Security relevant qualifications, training or accreditations (e.g. CISSP, CISM, CompTIA Security+) and/or experience with common Cyber Security benchmarks and frameworks (e.g. ISO 27001, NIST 800-53, Center for Information Security [CIS] Benchmarks)

Team Overview - Cyber Security

Our products, platforms and technologies are constantly evolving that’s why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you’ll get involved in tackling challenges and future threats in an ever-changing cyber landscape.

The rewards  

There's one thing people can't stop talking about when it comes to #LifeAtSky: the perks. Here’s a taster: 

• Sky Q, for the TV you love all in one place 

• The magic of Sky Glass at an exclusive rate 

• A generous pension package 

• Private healthcare 

• Discounted mobile and broadband 

• A wide range of Sky VIP rewards and experiences 

Inclusion & how you'll work 

We are a Disability Confident Employer, and welcome and encourage applications from all candidates. We will look to ensure a fair and consistent experience for all, and will make reasonable adjustments to support you where appropriate. Please flag any adjustments you need to your recruiter as early as you can. 

We’ve embraced hybrid working and split our time between unique office spaces and the convenience of working from home. You’ll find out more about what hybrid working looks like for your role later on in the recruitment process. 

Osterley: 

Our Osterley Campus is a 10-minute walk from Syon Lane train station. Or you can hop on one of our free shuttle buses that run to and from Osterley, Gunnersbury, Ealing Broadway and South Ealing tube stations. There’s also plenty of bike shelters and showers. 

On campus, you’ll find 13 subsidised restaurants, cafes, and a Waitrose. You can keep in shape at our subsidised gym, catch the latest shows and movies at our cinema, get your car washed and even get pampered at our beauty salon.  

We'd love to hear from you  

Inventive, forward-thinking minds come together to work in Tech, Product and Data at Sky. It’s a place where you can explore what if, how far, and what next.  

But better doesn’t stop at what we do, it’s how we do it, too. We embrace each other’s differences. We support our community and contribute to a sustainable future for our business and the planet. 

If you believe in better, we’ll back you all the way. 

Just so you know: if your application is successful, we’ll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer.