Overview
bet365 Manchester, England, United Kingdom
As an Information Security Analyst, Vulnerability Management, you will be working within the vulnerability management team, focusing on the technical side of Information Security to ensure IT systems are operated securely. The Information Security department monitors live operation, creates and reacts to alerts and anomalies identified through automated tools or manual analysis. The vulnerability management (VM) function covers ownership of processes and schedules relating to vulnerability scanning of all endpoints in the business. You will review results for risk and impact, own scheduling of specialist third-party vulnerability and penetration testing, and collate reports. You will liaise with business areas to understand risk profiles and advise on options to resolve identified issues, while working with governance and compliance to meet regulatory requirements. This role is eligible for inclusion in the Company’s hybrid working from home policy.
Responsibilities
* Own the processes and schedules for vulnerability scanning of all endpoints in the business.
* Review scan results in terms of risk and impact assessment.
* Schedule and plan for specialist third-party vulnerability and penetration testing; collate and present reports.
* Liaise with business areas to understand risk profiles and advise on remediation options.
* Work with governance and compliance to ensure regulatory requirements are met.
* Stay up to date with new and emerging threats and escalate where appropriate.
* Provide technical documentation and act as an escalation point when necessary.
Qualifications
* Good understanding of general principles, practices and technologies of information and cyber security.
* Hands-on experience conducting vulnerability scanning, evaluating results, and articulating risks.
* Experience of security-related technical investigations.
* Working knowledge of industry-standard information security practices.
* Knowledge of developments in security technologies and their applications.
* Awareness of PCI DSS at the current version.
* Excellent communication and documentation skills with high attention to detail.
* Excellent organisational skills with ability to meet deadlines.
* Pragmatic approach to governance and risk administration.
* Committed, flexible, can-do attitude toward work.
Additional Information
* Conduct vulnerability scanning with class-leading tools.
* Schedule scans across the entire business ensuring reporting requirements are met while minimising operational impact to endpoints.
* Articulate business risk to both technical and non-technical colleagues.
* Schedule internal and external resources to meet targets.
* Work within project processes to consider information security upfront and throughout the lifecycle.
* Liaise with the business to remain compliant with information security requirements in operational jurisdictions.
* Act as an escalation point where necessary.
* Create technical documentation.
* Stay up to date with emerging threats and escalate for further evaluation.
* Take an active role in audits where necessary.
By applying to us you are agreeing to share your Personal Data in accordance with our Recruitment Privacy Notice - https://www.bet365careers.com/privacy-policy
We are committed to creating an environment where everyone feels welcome, respected and valued. If you need adjustments or accommodations to the recruitment process, at application or interview, please don’t hesitate to reach out.
Seniorities and Employment
* Seniority level: Associate
* Employment type: Full-time
* Job function: Information Technology
* Industries: Gambling Facilities and Casinos
#J-18808-Ljbffr