Vulnerability Management Lead
Anywhere (UK)
Monzo
Join over 9 million people with a Monzo bank account. Free current accounts, joint accounts and business banking for all! We make money work for everyoneAt Monzo we’re aiming to build the best bank in the world. We are always keen to hear from capable, creative people who want to help us accomplish that goal. We want our bank to be safe and secure for our customers, so security is very important to us.
Security at Monzo
We are looking for a proactive, technically-minded and organised Vulnerability Management Lead to join our Information Security team in the bank’s 1st line of defence which has the ownership, responsibility and accountability for directly assessing, controlling and managing risk.
The team is part of Monzo’s Security team which has a wide range of responsibilities, from infrastructure security to application and information security.
You will be working directly with the engineers who are building our platform (rather than in a stand-alone compliance team.
As a bank, we are solving diverse, novel problems to ensure that our customers and data are secure, you will have the opportunity to make a direct impact on that.
One of the guiding principles of security at Monzo is that security at the expense of user experience is a last resort. We aim to move mountains in the background such that we can build world-class features without compromising on security.
You will:
- Own, define and build the end-to-end Vulnerability Management function at Monzo.
- Outline the short and long term strategy for VM at Monzo including technology, people and processes required to support your vision
- Help Monzo manage its technical vulnerabilities across all systems within our risk appetite and make sure we meet our regulatory requirements
- Bring innovative and cutting edge insights to Monzo on the latest ways to manage and deal with technical vulnerabilities.
- Work across the company with teams like Risk & Compliance design controls, deliver management information (KRIs) and mitigate risk including working with governance committees like the Security Council and reporting to the Board.
You should apply if:
- You have a strong background in VM in a commercial environment, preferably a tech company.
- You are comfortable working autonomously and can build a VM function from the ground up
- You have previously developed and delivered innovative VM solutions throughout a commercial environment;
- You have experience of dealing with stakeholders at all levels of the organisation;
- You are an excellent communicator, both verbally and in writing;
Logistics
- This can be based in our new London office or remote in the UK. Everyone will work remotely until we re-open our offices.
- We offer flexible working hours and trust you to work enough hours to do your job well, at times that suit you and your team.
- Diversity and inclusion is a priority for us – if we want to solve problems for people around the world, our team has to represent our customers. So we need to attract the best talent and create an environment that supports and includes them. You can read more about diversity and inclusion on our blog.
- If you prefer to work part-time, we'll make this happen whenever we can - whether this is to help you meet other commitments or strike a great work-life balance.
Equal Opportunity Statement
At Monzo, embracing diversity in all of its forms and fostering an inclusive environment for all people to do the best work of their lives with us. This is integral to our mission of making money work for everyone.
We're an equal opportunity employer. All applicants will be considered for employment without attention to ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity status or disability status.
Tags: Compliance Governance Strategy Vulnerabilities Vulnerability management
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open EDR-related jobs