Job title: Vulnerability Management Lead
Job type: Contract
Emp type: Full-time
Pay interval: Daily
Pay rate: GBP £575.00
Job published: 22/07/2024
Job ID: 82026

Job Description

Job Title :- Vulnerability Management Lead (SC cleared preffered)
Type:- Contract 6 months
IR35 status:- Inside IR35
Rate:- £550 per day 
Location:- London, Manchester or Bristol 

As a Vulnerability Management Lead, you will play a crucial role in broadening the capability of the Domains Team. You will develop expertise in dealing with vulnerabilities found in the infrastructure, tools, and services commonly used in the development and delivery of digital services in the Public Sector. You will help stakeholders understand, assess, and act on vulnerability information, improve the vulnerability management lifecycle, and proactively identify threat intelligence sources to inform strategic vulnerability mitigation measures. 

Responsibilities:-

- Expand the expertise of the Domains Team to handle vulnerabilities in infrastructure, tools, and services used in the Public Sector digital services
- Classify and triage vulnerabilities at scale according to priority
- Assist Public Sector bodies in understanding, assessing, and addressing vulnerabilities
- Help in planning and prioritizing vulnerability remediation using a risk-based approach
- Improve vulnerability management lifecycle
- Identify and leverage threat intelligence sources
- Create a knowledgebase of guidance for managing vulnerabilities
- Develop and maintain relationships with stakeholders in the Public Sector
- Identify common vulnerabilities and solutions across organizations
- Collaborate with the Government Cyber Coordination Centre and product owner to improve data quality shared with public sector bodies
- Identify gaps in monitoring capability to enhance support for organizations

Your Day to Day:- 

- Utilize expert knowledge of security advantages and vulnerabilities of commodity products and technologies
- Stay updated on current cybersecurity threats and risks
- Conduct risk assessments and develop security advice aligned with business risks
- Specify and deploy security technical controls
- Engage with a broad range of personnel to encourage the implementation of security measures
- Stay informed about the marketplace of cybersecurity products and services
- Interact with various stakeholders and work on designing and delivering effective services
- Collaborate with the Domains Team to meet user needs and measure KPIs
- Work on improving the quality of data shared with public sector bodies
- Identify improvements and gaps in monitoring capability

Skills and Qualifications 

- Expert knowledge of cybersecurity advantages and vulnerabilities
- Good understanding of current cybersecurity threats and risks
- Experience in risk assessments and developing security advice
- Familiarity with cybersecurity products, cloud computing architecture, and related technologies
- Ability to interact with a diverse group of personnel
- Relevant industry qualifications and accreditations (e.g., Certified Cyber Professional, CISSP, ISO27001 Lead Implementer)