Vulnerability Analyst

 Location: UK - Nottingham, UK - Edinburgh, UK - Hatfield, UK - London, UK - Manchester, UK - Milton Keynes, UK - Reading | Job-ID: 207650 | Contract type: Standard | Business Unit: Cyber Security

Life on the team 

As part of our vulnerability management team, you'll join a supportive group of professionals dedicated to protecting our customers.  Your days will involve analysing the latest threats and carefully directing potential issues to the right technical teams for swift fixes. You'll stay on the cutting edge of vulnerability knowledge, ensuring our defences stay strong.
This role is perfect for someone who enjoys critical thinking and problem-solving. You will collaborate across departments under our established vulnerability management process, directly contributing to the security and well-being of our customers and working with us to develop the service further with your valuable input and ideas. 

What you’ll do 

As a Vulnerability Analyst, you will play a critical role in safeguarding our customers systems. You will handle identifying and assessing vulnerabilities across customer supported products, ensuring timely remediation following our industry aligned vulnerability lifecycle management process. Your ability in Qualys and Tenable scanning tools will be important in this role.
Responsibilities and required skills:

Vulnerability Assessment and Management:

• May conduct vulnerability assessments using Qualys and Tenable scanning tools.
• Analyse scan results to identify vulnerabilities against a defined list of supported products ‘Vulnerability Lifecycle Management Product Lists (VLMPLs)’

 Incident Response and Communication:

• Co-coordinate responses to vulnerability incidents.
• Issue timely notifications and communications related to security vulnerabilities.

 Proactive Identification and Mitigation:

• Stay informed about emerging threats and vulnerabilities from vendors, threat intelligence, and subscriptions.
• Assess potential impacts and recommend mitigating actions.
• Implement best practices for vulnerability treatment, including working with our operational teams to ensure policy enforcement, system hardening, patching, and fixes.

 Collaboration and Coordination:

• Work closely with technical and non-technical teams.
• Coordinate emergency patching efforts when required.
• Translate complex security matters into clear, business-friendly communications for diverse audiences.

What you’ll need 

• Stay up to date with the latest information technology security bulletins.
• Perform validation and closure activities upon completion of corrective mitigation actions.
• Preferably experience with Qualys and/or Tenable scanning tools.
• Strong analytical skills and attention to detail.
• Excellent communication skills, both technical and non-technical
• Support the continuous improvement and development of our vulnerability service. 

About us

With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world’s greatest organisations, driving digital transformation, enabling people and their business.