This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Threat And Vulnerability Manager

14/10/19_1571052137
£70000 - £80000 per annum

Managing this Role

Charlee Ryman

Consultant - Cyber Specialist 0207 759 7878

Spending seven years' in the Royal Navy as a warfare technician, Charlee uses his comprehensive military network and his deep technical expertise to quickly pinpoint the best cyber security professionals for leading employers of all shapes and sizes.

 

Seniority: Junior - Senior 

Job Type: Permanent

Geographical coverage: London

Market: Cyber security operations within MSSPs

We are looking for a Threat and Vulnerability manager to join an organisation with over 10,000 people and are still growing. You will be apart of a green field security project that will allow you to utilise your full skill set and help improve the security function of this major organisation who are taking their security very seriously. You will maintain the confidentiality and integrity of the security team. You will protect their ISMS by utilising your experience with threat intelligence and vulnerability management.

The Role

  • You will be responsible for the management of threat intelligence and vulnerability management.
  • Ensuring that strategies and frameworks are in place in line with relevant security polices.
  • Produce TVM and CTI reports
  • Improving tooling and the security function
  • Investigation and remediation lead
  • Direction of teams to ensure timely completion of projects
  • Head up the vulnerability management board
  • Ensure the smooth running of the vulnerability systems and working alongside the IT change teams.
  • Adopt and innovative approach to improving the security posture

Key Skills

  • You will have a strong understanding of the current security landscape and threat vectors/actors.
  • Experience as a security senior practitioner and a good level of technical knowledge
  • Experience working within an MSSP.
  • Identification and implementation of information security technical controls

One or more of the following qualifications are highly desirable.

  • Masters in Information Security (MSc)
  • Certified Information Systems Security Professional (CISSP)
  • ITIL v3SFIA, level 4, Level 4, Senior Practitioner

This is a great opportunity to become a part of a business that is dominating Europe. If this sounds like something that is of interest to you, apply now.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Threat Hunter

My client provides an elite threat detection capability to a large array of clients using the latest tooling to help detect and respond to the latest threats. Using these tools provides my client with the capability to detect both internal and external threats.

This is your chance to provide an elite threat detection service to a broad spectrum of clients, whilst due to the rapid growth of my client you will be exposing yourself to a level of career progression that is hard to match.

The Role

As a Cyber Security Analyst you will have the ability to monitor the networks for threats and report your findings to all audiences.

You will be expected to monitor the client's assets and environments using our high end security tools. Identifying, analysing and alerting the client's to existing and emerging threat actors, the following will be the main focus of the role:

  • Perform detailed network analysis to identify potential threat actors.
  • Create clear, concise and analytical reports on threats.
  • Keep on top of current threats and informing Clients of the risk.

Key Skills

You will need to be a quick thinker who can quickly analyze threats and the impact they will have. You will have the ability to think of ways to prevent the future attacks and to be one step ahead of the threat at all times.

  • Knowledge of current Cyber Threats.
  • Understanding of typical malware functionality and capabilities.
  • Understanding of tools used with Blue Teams.
  • Packet Capture experience.
  • Familiarity with typical security technologies such as firewalls and SIEM tools.
  • An understanding of large scale networking technologies.
  • Windows and Linux exposure.
  • Scripting exposure - Python and Bash.

If you can demonstrate that you have the knowledge of current Cyber Threats, and the ability to discuss Cyber Security concepts revolving around Network IDS and malware then apply now to be apart of this professional team!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

SOC Manager

As a member of the Information Security - Security Operations team (InfoSec SecOps); you will maintain the confidentiality, availability and integrity of our information and information systems. This will primarily be achieved through identification and mitigation of risk through security systems management and incident management.

Reporting to the Head of IT Security this role leads a team of Security Support Analysts, Threat and Vulnerability Managers along with Security Engineers. It's also has accountability for the strategic relationship of several Security 3rd party suppliers.

Role responsibilities

  • Manage, lead and develop a high-performing team of security analysts and a vulnerability manager
  • Accountable for ensuring the team is adequately resourced and skilled to meet demand and 24 x 7 cover
  • Accountable for the delivery of a security operations capability and recommending operational security improvements to other IT teams.
  • Ensure clear strategies are in place for embedding operational security controls, aligned to relevant security policies and technical standards
  • Produce and disseminate management Information in relation to security incidents and the performance of technical Information Security controls
  • Manage all Security Operations 3rd Parties in ensuring they deliver value for money.
  • Lead the investigation and resolution of security incidents, root cause analysis and service improvements
  • Prepare reporting material for periodic security groups
  • Lead and direct the team and other IT areas to address timely remediation of identified vulnerabilities
  • Monitor security threats and known vulnerabilities to ensure that appropriate operational security controls are working effectively to prevent, detect and respond to security events and alerts
  • Demonstrate the efficiency and effectiveness of security operational controls, and ensure that security control performance is optimal
  • Develop and operate processes and procedures that counteract potential threats and vulnerabilities

Role Requirements

The successful candidate will have the following skills and experiences;

  • A thorough understanding of the Information security threat landscape, significant risks, technical developments and directions.
  • Strong interpersonal and management skills are essential.
  • Depth of experience in IT Technical Security, including time as a security principle practitioner
  • Experience of managing a managed security service provider
  • Experience of using forensic investigative techniques
  • Experience of using threat intelligence systems and services
  • Experience of vulnerability management
  • Direct experience of leading a security operations team
  • Experience of leading response and management of security incidents
  • Demonstrable experience in the identification and implementation of information security technical controls
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • ITIL v3
  • SFIA. level 5, Master
  • IISP. Level 5, Principle Practitioner

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Lead

We are working with a global software and cloud hosting solutions provider, supporting them to build a brand-new, best in class Cyber Security function that sits within a tech team of over 50 people.

As a Cyber Security Lead, you will report to the Director. Your primary responsibilities will include the creation and implementation of the Security Road Map, Incident Response, mitigating threats, implementing security controls and working with the cloud team to maintain a 24/7 x security program.

As this is a brand-new position within the company, you'll have the flexibility to shape what Cyber Security looks like.

Duties and responsibilities include:

  • Creation, implementation and improvement of security toolings
  • Monitor the security infrastructure for potential threats, escalation and remediation
  • Assist with ticket logging and report writing
  • Incident Response and threat hunting (L3 or P1 Issues)
  • Work alongside 3rd party penetration testers
  • Documentation creation IAW policies and standards
  • OS Hardening (Windows and Linux)
  • Working with and creating GPO's (Group Policy Orders).
  • Dealing with Key Stake holders in the business.

Additional skill sets:

  • Knowledge of scripting languages
  • Knowledge of cloud-based solutions
  • ISO27001 knowledge
  • The ability to help create company road maps
  • Penetration testing using Nessus and other tools
  • Windows and Linux knowledge

This is a unique position for a Cyber Security Lead to come in and head up the creation of a next generation security function.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Next Generation Lead Consultant

Are you looking for a position that allows you to increase your network whilst dealing with the latest tech in the market?

This is a Senior Technical role reporting directly to the CTO within this MSSP. This position will require you to maintain the current services to existing clients, ensuring all KPI's and SLA's of tickets are also met. You will also assist with the onboarding of new managed services whilst playing a key part in mentoring junior consultants. Flexibility to travel one or two days per week is required.

This role requires knowledge of next generation firewalls specifically Palo Alto and/or Fortinet along with some experience dealing with F5 LTM & APM. You will also have the ability to quickly pick up new technologies that are emerging in the market. You will be able to communicate to all audiences on both a technical and non-technical level.

Responsibilities

  • Work alongside the CTO to help drive the company forward in the desired direction.
  • Constant self-improvement to keep up with the market through meeting new vendors and online courses.
  • Respond to and support L3 tickets.
  • Write White Papers for the business.
  • Manage technical relationships with key vendors.
  • Potentially support with ISO27001 management processes.
  • Be able to assist the wider business with support tasks.

Qualifications

Certifications are not essential for this position. If you have any "Next Gen" firewall certifications or CISSP, this would be advantageous.

This role will allow you to shape the future of this MSSP whilst working directly with the CTO. You will be a self starter and you will be able assist the business across multiple levels whilst undertaking training to keep your skill set up to date. If this sounds like something that would be of interested to you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Engineer

Blackthorn Trace has partnered with one of the UK's largest airline firms that led the way by being the first airline to bring their security functions completely in house. As a member of the wider security team you will maintain the confidentiality, availability and integrity of their information and information systems. The security engineer will primarily manage, implement, maintain and configure operational security systems and technical security services.

Job Responsibilities

  • Responsible for the management, implementation, maintenance and configuration of operational security systems and security service capabilities, aligned to IT strategy and security standards
  • Responsible for the provision of technical security services
  • Responsible for establishing, maintaining and using security engineering standards, processes, procedures and guidelines
  • Provide IT teams with security focused technical support and consultancy to ensure compliance with security policies, standards and regulations
  • Responsible for continuous improvement for operational security services and contribution to the security engineering roadmap
  • Retain a working knowledge of related security technical areas such as; application, network and host, to enable effective liaison with other technical groups and protection of our clients information
  • Develop and operate technical standards, processes, procedures and guidelines
  • Produce and disseminate management information in relation to security services, platforms, and the performance and availability of technical information security systems
  • Out of hours support required on a rota basis

Key Requirements.

  • Experience of security engineering systems and controls, including, vulnerability management, web content filtering, intrusion prevention, SIEM, email security, DLP, NAC, IAM, O365 and AWS
  • Certified Information Systems Security Professional (CISSP)
  • ITIL v3
  • Vendor technology certifications e.g. AWS, SIEM, vulnerability management, web content filtering, intrusion prevention, email security management

This is an exciting opportunity to join one of the UK's largest airlines that really do live and breathe security! If this sounds like a company, you would like to work for then please apply today!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

SOC Analyst

Are you looking to work for one of the longest standing companies in the UK who live and breathe security? A company that will reflect your passion? My client is looking for a SOC Analyst who will be working in a secret location and who will deal with secret breaches and information.

You will be working alongside a large security team and will have scope to transfer to many different sections within the company should this be of interest. You must be eligible for a SC/DV Clearance.

  • Provide analysis and trending of security log data from a large number of heterogeneous security devices.
  • Provide threat and vulnerability analysis as well as security advisory services
  • Analyze and respond to previously undisclosed software and hardware vulnerabilities
  • Investigate, document, and report on information security issues and emerging trends.
  • Provide support to the communication of relevant IT security procedure and/or process as relevant.
  • To support delivery of aspects of an IT and/or Network Security procedure or processes, operations and architectural solution or security build.
  • Completes assigned elements of IT security risk assessments and compliance audits.
  • Manages where applicable Team Members to ensure high performing and well-motivated people delivering a specific function or service.
  • Resolve and take ownership of customer incidents attending Technical and Service management bridge calls as required.

  • Participate in the drafting of quality technical and incident reports as well as recommendations to the Management Team.
  • Key Role in passing on knowledge and skills across the Operational Support teams
  • Undergo additional training to match operational requirements and equipment
  • To support delivery of aspects of an IT and/or Network Security procedure or processes, operations and architectural solution or security build
  • To support delivery of aspects of an IT and/or Network Security procedure or processes, operations and architectural solution or security build.
  • Completes assigned elements of IT security risk assessments and compliance audits.
  • Manages where applicable Team Members to ensure high performing and well-motivated people delivering a specific function or service.
  • Provide support to the Service Management Teams (Capacity, Availability, Release, Information Security)
  • Experience working in a SOC, with knowledge of attack vectors, tactics and techniques
  • Networking, Windows and Linux knowledge
  • Industry Recognised Qualification from bodies such as COMPTIA or (ISC)2 or GIAC or equivalent experience would be desirable.
  • Experience of 1st line incident detection, hunting and response as well as the ability to analyse and manage response activities Knowledge of various security methodologies and processes, and experience with technical security solutions (SIEM firewall and intrusion detection systems)
  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Ability to multi-task, prioritize, and manage time effectively, to deliver on agreed deadlines

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.