Vulnerability Management Engineer

Working in the Information Security team you will focus on Vulnerability and Threat Management across our Next technology estate and the tech utilised within it to help maintain an awareness of new and emerging security threats and trends.

You will be responsible for identifying, assessing, validating and communicating new vulnerabilities across the other technical teams, ensuring the vulnerability management process is followed. Where required you will work with other IT teams to provide guidance and recommend mitigation strategies for vulnerabilities.

As a Vulnerability Management Engineer a knowledge of the MITRE Attack Framework would be advantageous. You will help manage and configure our vulnerability scanning and reporting tools.

Where required you will create reporting to summarise findings and recommendations for a variety of audiences. The role also requires you to take a lead in reviewing incoming threat intelligence in order to assess its relevance and severity in context to our business, where appropriate you will provide reports on threats of interest to senior stakeholders and work with the relevant teams to proactively assess, test and mitigate any risk.

You will also be expected to maintain an awareness of the changing threat landscape and industry standards. Proactively work with our Incident Response and Engineering teams to identify tactics and techniques used by threats actors and opportunities to improve the security of our environment. Propose and support implementing suitable countermeasures for threats identified through intelligence, testing and objective validation. (This role involves participating in a shift rota).

• Manage and maintain Vulnerability scanning and risk reporting tools.
• Complete relevant security assessments, including debriefing key stakeholders on any apparent risks.
• Ensure all relevant vulnerabilities are correctly triaged, risk assessed, logged and assigned to remediation teams.
• Support remediation teams with remediation strategies.
• Assist Incident Response team with the investigation and resolution of Security Incidents if and when required.
• Create and maintain operation procedures, configuration and technical documentation to a high standard.
• Manage and maintain metrics and reporting to demonstrate the effectiveness of our vulnerability management programme.
• Maintain an awareness of new and emerging security threats and trends.
• Review threat intelligence and advise on recommended mitigation strategies where appropriate.

• Experience managing and maintaining a Vulnerability Management tool.
• A strong knowledge of Information Security concepts including malware, emerging threats, attacks and vulnerability management.
• Proven Information Technology experience with an excellent understanding of network protocols and server infrastructure including network segmentation.
• Windows Server and/or Linux experience.
• Ability to contribute towards helping diagnosis and resolution of major issues.
• Adheres to and promotes high standards.
• Understand and operate change management.
• A team player who is hardworking and self-motivated.
• Possess an inquisitive and proactive approach to identifying security gaps.
• Ability to effectively plan and prioritise workloads, and to measure and report on current progress.
• Ability to remain calm under pressure and clearly communicate to all levels of management.
• Excellent attention to detail.
• Understanding of vulnerability and threat assessment frameworks, such as: CVSS, CVE, CWE,OWASP, MITRE.
• Experience with security or compliance standards such as PCI-DSS or ISO27001.
• Understanding and experience of working for a Retail company.
• Foundational understanding of Cloud based infrastructure.
• Relevant industry recognised security qualification.
• Understanding of DevOps architecture and code scanning.
• Offensive Security experience.
• Competent at keeping up to date on CTI (Cyber Threat Intelligence).
• Experience of managing a TIP (Threat Intelligence Platforms).
• Experience of Custom AI usage.

We aim to support all candidates during the application process and are happy to provide workplace adjustments when necessary. Should you need support with your application due to a disability or long-term condition, feel free to get in touch with us by email headoffice_careers@next.co.uk (please include 'Workplace Adjustments' in the subject line), or call us on 0116 284 2486 and leave a voicemail.

We are a global tech innovator and a software house inside a retailer. Our platforms power online journeys, store systems, and automated warehouses. Be part of a team that owns end-to-end delivery, shipping often, owning outcomes and keeping our customers moving.

Explore similar opportunities across our business.

You’ve probably heard of NEXT, but did you know about our portfolio? Every brand in our offering brings a distinct story, attitude and community. Spanning contemporary lifestyle brands, established high street names and timeless collections, together they showcase the vibrancy of today’s retail world.

You know Next, but did you know we’re a FTSE-100 retail company employing over 35,000 people across the UK and Ireland. We’re the UK’s 2nd largest fashion retailer and for Kidswear we’re the market leader. At the last count we have over 500 stores, plus the Next Online and it’s now possible to buy on-line from over 70 countries around the world! So we’ve gone global!

• 25% off most NEXT, MADE*, Lipsy*, Gap* and Victoria's Secret* products (*when purchased through NEXT)
• Company performance based bonus
• On-site Nursery available; OFSTED outstanding in all areas
• 10% off most partner brands & up to 15% off Branded Beauty
• Early VIP access to sale stock
• Access to fantastic discounts at our Staff Shops
• Restaurants with great food at amazing prices
• Access a digital GP and other free health and wellbeing services
• Free on-site parking
• Financial Wellbeing - Save, track and enhance your financial wellbeing
• Apprenticeship - Grow and develop on the job whilst gaining a qualification
• Direct to Work - Discount online and instore, collect your items the next day for free from your place of work or local store
• Support Networks - Access to Network Groups to empower and celebrate each other
• Wellhub - Discounted flexible monthly gym memberships, with apps, PT sessions and more