Cyber Security Vulnerability Management Analyst

Cyber Security Vulnerability Management Analyst required for market leading financial services firm. It's a great opportunity to get to work with industry-leading tools and security partners, to enhance your analytical, technical and communication skills, and to really make a difference to our customers and colleagues. This role will contribute to the development, maintenance and overall delivery of Vulnerability Management controls for the Bank, reporting to the Vulnerability Management Lead. The Vulnerability Management Analyst will contribute to the day-to-day running of the team, assisting Specialists with managing the Bank's Vulnerability Management controls and provide security input for vulnerabilities which threaten the organisation.

• Understanding of vulnerability lifecycles, standards and ratings
• Risk assessing findings to determine appropriate response with a proactive approach to recording, management and escalation of risks
• Increasing the quality of vulnerability reporting automation to reduce manual effort
• Advanced analytical and problem-solving techniques with practical experience of Scripting with Python & Power BI
• Providing advice on appropriate Vulnerability Management controls across technical disciplines, with experience of Windows or RHEL OS platforms and an understanding of patching processes and automation options
• IT and Information Security best practice
• Team working and the ability to be self-directed on task completion
• Demonstrating a professional can-do attitude and high levels of motivation
• Working under pressure, managing multiple priorities in a rapidly changing and dynamic environment
• Collaborating with internal and external parties to provide excellent outcomes and customer service

• Knowledge of vulnerability scanning technologies
• Experience in analysis of vulnerabilities identified against one of infrastructure, assets or code
• Working knowledge of the Qualys application and its core modules
• Self-driven qualities and ability to work independently as well as part of a team
• Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way
• The ability to engage stakeholders to influence decisions to improve security across the company
• Industry related security qualification (eg CISSP, CISM) or equivalent practical security experience
• Experience in improvements programmes to reduce risk, increase quality and reduce manual effort, and delivering control improvements across multiple technical disciplines
• Knowledge of ITIL framework, including risk and change management