• Location: London, England
  • Date Posted: 26th Oct, 2021
  • Reference: 265383

Job Description


An amazing opportunity to work for one of the highest growing businesses in the world. The company operates within a highly competitive space within the FMCG market where it sees itself as more of a fin-tech company. The business has heavily invested in its tech and are driven by focused and determined individuals. Due to being a fast growing company there is not much legacy to work through and allows you make your mark quickly.



Role & Responsibilities


Working as a Senior Vulnerability Management, this role gives you the opportunity to define, implement & lead a forensic incident strategy. This is part of a growing Cyber Security team where you will be focused on detecting attacks against a backdrop of an ever-advancing landscape. Your key duties will include:



  • Design, embed and manage a scalable vulnerability management policy, setting out clear prioritisation thresholds and taking into account business context and relevant industry standards, regulatory requirements and stakeholder expectations

  • Chair the vulnerability management working group

  • Produce and deliver vulnerability management reporting to relevant committees and stakeholders

  • Enable system owners to manage their vulnerabilities within defined thresholds by providing them with clear visibility of relevant vulnerabilities and remediation expectations

  • Advise stakeholders across the company on the security risks, prioritisation and mitigation of identified vulnerabilities

  • Closely collaborate with other teams in the security function to roll out a consistent approach to vulnerability management



Skills & Qualifications


In order to be successful in the role you must have the following skills or experience:



  • Previously defined policy and deployed tools for managing vulnerabilities in a cloud native environment

  • Experience in assessing technical security vulnerabilities and having difficult conversations with internal and external stakeholders

  • Sound technical understanding of modern cloud technologies (eg AWS, Docker, Kubernetes) and CI/CD workflows

  • Familiar with security standards such as PCI-DSS and NIST


Benefits



  • Highly competitive Salary

  • Benefits Package which includes Stock / Equity Options

  • Company Bonus

  • WFH Opportunities