Cyber Threat and Vulnerability Manager

Join a team at the heart of the global economy The Department for International Trade (DIT) and Inspire People are partnering together to bring you an exciting opportunity for a Threat and Vulnerability Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. Salary is dependent on location and technical skills as assessed at interview.

Flexible, hybrid working from London, Salford, Birmingham, Cardiff, Darlington, Edinburgh or Belfast.

About the role

You will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, you will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions.

A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers to deliver a documented risk-based response to the present and future of anything that may be found.

Main responsibilities

Your day-to-day role will involve the need to:

• Working with the Security Leadership team to develop a strategic road map for an effective vulnerability detection, assessment, remediation, and threat intelligence program.
• Line management of the threat and vulnerability management team.
• Building sustainable relationships to champion the adoption of vulnerability and threat management, compliance, and penetration testing program across the Department.
• Manage the relationship with pen testing 3rd parties and the scheduling of tests.
• Develop, implement, and maintain the organisation's vulnerability management strategy, policies, standards, and procedures.
• Be accountable for thorough assessments of the department's systems, networks, and applications.
• Recommend remediation strategies and provide advice on complex configuration changes in support of vulnerability remediation.
• Drive prioritisation of those vulnerabilities through a risk-based approach, to meet common organisational objectives such as regulatory compliance and audit functions.
• Development and maintenance of actionable key performance and risk indicators (KPI's & KRI's) that provide a view over the effectiveness of the department's Vulnerability Management & Threat Intelligence program.
• Continuously improve DBT's TVM program maturity and security posture through driving successful remediation efforts with internal and external teams responsible for infrastructure and applications.

Skills and experience

You should be able to demonstrate essential skills and experience of:

• Holding a professional information security qualification e.g. CISSP, CISM, MSc. Cyber Security etc
• Managing a Threat and Vulnerability Management function, with ability to influence, collaborate and build relationships with across stakeholders with differing levels of technical security competence
• Solid understanding of Vulnerability management, encompassing a comprehensive understanding of vulnerability scanning and threat intelligence tools, risk assessment methodologies, and remediation planning in a multi cloud environment
• Experience of managing the scoping, execution, and assessment of outcomes from supplier led pen testing
• Excellent written and verbal communication skills including the ability to relate technical information to a non-technical audience
• Working independently and as part of a larger team to deliver a risk-based response, demonstrating adaptability with a forward-thinking and collaborative approach

Benefits

If you join DBT, you will get:

• learning and development tailored to your role
• a flexible, hybrid working environment with options like condensed hours
• a culture encouraging inclusion and diversity
• a Civil Service pension with an average employer contribution of 27%
• annual leave starting at 25 days rising to 30 days with service
• three paid volunteering days a year
• an employee benefits programme including cycle to work

If you are an experienced Vulnerability Manager looking to enhance your career and make a difference across a function that will make a real difference to the UK economy, then apply today or contact Alison Whitehead at Inspire People in complete confidence for further information.