Threat and Vulnerability Lead London, United Kingdom
2 weeks ago
Job Title: Threat and Vulnerability Lead
Reporting to: Business Information Security Officer
Position Type: Permanent, Mon-Fri, 9-5
Why Tokio Marine HCC?
Standing still is not an option in the current world of Insurance. T M HCC are one of the world’s leading Speciality Insurers. With deep expertise in our chosen lines of business, our unparalleled track record and a solid balance sheet, T M HCC evaluates and manages risk like no one else in the industry. Looking beyond profit, empowering our people and delivering on our commitments are at the core of our customer values, and so is a desire to grow and provide creative and innovative solutions to our clients. We have doubled our gross written premiums in the past 3 year s and our plan is to do so again in the next 3 years. To support this desire, we need to be forward-thinking and innovative in every respect. That means continually improving our customer-focused business, it means providing system s , solutions and technology to enable seamless growth and business innovation, and it means having the best people capability to apply to these challenges.
Part of our evolution involves growing our team, and bringing in a range of views, perspectives and backgrounds that will allow us to deliver this forward-looking culture , t hat relies upon open and trusting relationships, and a shared vision for that continual improvement. We aspire to build an environment where new perspectives are encouraged, where resilience, fresh ideas and different opinions are valued.
About the Opportunity
TMHCC International has recently completed an exciting IT transformation and is the process of recruiting a broad range of suitably qualified, skilled and experienced people. Reporting into the Business Information Security Officer (BISO) for TMHCC International , the Threat and Vulnerability Lead is part of the BISO function established within in the CIO organisation of the International division. Y ou'll join the IT team as someone who is passionate about Cyber Threat Intelligence, Cyber Risk, and V ulnerability M anagement.
Under the guidance of the BISO , you will work closely with TMHCC International IT teams and Enterprise Security team to prioritise and coordinate vulnerability remediation across the platform estate. You will be experienced in cyber vulnerability detection, remediation, and reporting processes . You will be responsible for triaging and prioritising detected vulnerabilities as well as coordinating and driving remediation activity to reduce our cyber risk profile.
Key to your role will be maturing MI reporting for onward communication to the board and executive.
Core Responsibilities
- Ensure in-depth knowledge and understanding of Threat and Vulnerability management practices as you prioritise and coordinate remediation of vulnerabilities across our estate .
- Establish and maintain strong relationships with stakeholders in the International IT teams as well as Enterprise Security .
- T rack vulnerability scanning coverage and remediation risk and performance metrics against established thresholds.
- Collaborate with Enterprise Security teams , as you monitor and understand impacting risks of existing , and emerging , vulnerabilities.
- Coordinate with the IT stakeholders and Enterprise Security to ensure all infrastructure vulnerability scanning solutions are deployed and operating across the IT organisation.
- Oversight and r eview firewall security rule compliance and drive remediation and risk reduction .
- Ensure exceptions to vulnerability management policies are managed in accordance with Enterprise security policy exception processes.
- Critically evaluate information gathered from multiple sources, reconcile conflicts, abstract up from low-level information to create a clear understanding of cyber risks .
- Support the BISO in the pro viding metrics to the Divisional IT Risk Reporting and Dashboard s .
- Escalate significant cyber risks and issues as they emerge, to the BISO and IT Leadership for action or information .
- Lead threat intelligence led scenario testing initiatives including remediation of identified issues to meet operational resiliency requirements.
Skills and Requirements :
- 5 - 10 years of experience in a technical cyber role ( e.g., threat and vulnerability analyst , security engineer, SOC analyst) .
- Working knowledge of vulnerability scanning and detection technologies .
- Practical experience in triage and remediation of vulnerabilities .
- Deep understanding of and a bility to articulate the risk associated with security vulnerabilities.
- A bility to coordinate and chair regular meetings and workshops with multiple stakeholders to provide guidance, collaboration and oversight of vulnerability remediation initiatives .
- Excellent u nderstanding of MITRE ATT&CK framework , adversary tactics and techniques.
- Working knowledge of red team and penetration testing practices and experience in remediation of test findings.
- Excellent verbal, written communication, and presentation skills , being able to explain complex items in a simple yet articulate manner .
- C onfidence in presenting information and acting as a source of SME knowledge and guidance.
- Analytical, conceptual thinking, planning and execution skills .
- A bility to drive improvements and take charge of initiatives , backed with e xcellent coordination strength as well as assertiveness .
- R esult orientated and able to manage to measurable targets and desired outcomes .
- A passion to champion a cyber security culture and continuous learning of latest cyber threat trends.
- Relevant industry qualifications (e.g. CISSP) .
- Practical experience of Qualys scanning technologies .
- Experience of the Specialty and Lloyd’s/Companies market insurance industry
- Relevant degree or similar qualification ( e.g., BSc Computer Science or other related fields of study)
The Tokio Marine HCC Group of Companies offers a competitive salary and employee benefit package. We are a successful, dynamic organization experiencing rapid growth and are seeking energetic and confident individuals to join our team of professionals. The Tokio Marine HCC Group of companies is an equal opportunity employer. Please visit for more information about our companies.
The Tokio Marine HCC Group of companies is an equal opportunity employer. Please visit for more information about our companies.
#J-18808-Ljbffr-
Cyber Threat
2 weeks ago
London, United Kingdom La Fosse Full timeAbout this RoleApply now, read the job details by scrolling down Double check you have the necessary skills before sending an application.Role Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security...
-
Cyber Threat
4 weeks ago
London, United Kingdom La Fosse Full timeJob DescriptionAbout this RoleRole Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function.You will report directly into the BISO and be a senior individual within their existing team. You will be...
-
Cyber Threat
4 weeks ago
London, United Kingdom La Fosse Full timeAbout this RoleRole Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function.You will report directly into the BISO and be a senior individual within their existing team. You will be joining the UK...
-
Cyber Threat
2 weeks ago
London, United Kingdom La Fosse Full timeJob Description About this Role Role Title: Threat & Vulnerability Lead Location: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function. You will report directly into the BISO and be a senior individual within their existing team. You...
-
Cyber Threat
2 weeks ago
London, United Kingdom La Fosse Full timeAbout this RoleApply now, read the job details by scrolling down Double check you have the necessary skills before sending an application.Role Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security...
-
Cyber Threat
4 weeks ago
London, United Kingdom La Fosse Full timeAbout this Role Role Title: Threat & Vulnerability Lead Location: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function. You will report directly into the BISO and be a senior individual within their existing team. You will be joining...
-
Cyber Threat
4 weeks ago
London, United Kingdom La Fosse Full timeAbout this Role Role Title: Threat & Vulnerability Lead Location: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function. You will report directly into the BISO and be a senior individual within their existing team. You will be joining...
-
Cyber Threat
12 minutes ago
City of London, Greater London, United Kingdom La Fosse Full timeAbout this Role Apply now, read the job details by scrolling down Double check you have the necessary skills before sending an application. Role Title: Threat & Vulnerability Lead Location: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security...
-
Cyber Threat
4 weeks ago
London Area, United Kingdom La Fosse Full timeAbout this RoleRole Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function.You will report directly into the BISO and be a senior individual within their existing team. You will be joining the UK...
-
Cyber Threat
4 weeks ago
London Area, United Kingdom La Fosse Full timeAbout this RoleRole Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function.You will report directly into the BISO and be a senior individual within their existing team. You will be joining the UK...
-
Cyber Threat
4 weeks ago
London Area, United Kingdom La Fosse Full timeAbout this RoleRole Title: Threat & Vulnerability LeadLocation: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function.You will report directly into the BISO and be a senior individual within their existing team. You will be joining the UK...
-
Cyber Threat
4 weeks ago
London Area, United Kingdom La Fosse Full timeAbout this Role Role Title: Threat & Vulnerability Lead Location: UK- London La Fosse Associates are working with a global Insurance business who are looking to add a Threat & Vulnerability Lead to their strong internal security function. You will report directly into the BISO and be a senior individual within their existing team. You will be joining...
-
Threat and Vulnerability Manager
7 days ago
london, United Kingdom Gresham Hunt Full timeThreat & Vulnerability ManagerLondon – HybridSalary: DoEGresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
5 days ago
London, United Kingdom Gresham Hunt Full timeThreat & Vulnerability ManagerLondon – HybridSalary: DoEGresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
5 days ago
London,, UK, United Kingdom Gresham Hunt Full timeThreat & Vulnerability ManagerLondon – HybridSalary: DoEGresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
7 days ago
London, United Kingdom Gresham Hunt Full timeThreat & Vulnerability ManagerLondon – HybridSalary: DoEGresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
7 days ago
London, United Kingdom Gresham Hunt Full timeThreat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
7 days ago
London, United Kingdom Gresham Hunt Full timeThreat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the global technology...
-
Threat and Vulnerability Manager
4 days ago
London, United Kingdom Gresham Hunt Full timeJob Description Threat & Vulnerability Manager London – Hybrid Salary: DoE Gresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional for their London based team. This is an exciting opportunity to help drive the vulnerability management programme as part of the...
-
Threat and Vulnerability Manager
6 days ago
London, United Kingdom Gresham Hunt Full timeThreat & Vulnerability ManagerLike the look of this opportunity Make sure to apply fast, as a high volume of applications is expected Scroll down to read the complete job description.London – HybridSalary: DoEGresham Hunt is currently partnered with a leading financial services client in the search for an experienced Vulnerability Management professional...
