This role is for an experienced professional in vulnerability management and threat intelligence to join our Cyber Operations team. You will work closely with colleagues across the organisation to further mature and continuously improve our cyber defence capabilities. Cyber Operations forms part of a wider, well established security function operating within a highly regulated environment.
Working Style: This role will be carried out in‑line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite from one of our offices. This role is based in our Newport Office. The requirement for attendance at an office location can vary by role so we would encourage candidates to discuss working arrangements with the recruiting manager to agree a reasonable balance between working from home and the office.
Responsibilities
* Lead and enhance the organisation's vulnerability management programme, including our Penetration Testing programme across a complex hybrid IT environment covering both infrastructure and applications. Scoping, prioritising work, engaging with stakeholders, and ensuring remediation activities happen in a timely fashion.
* Prioritise vulnerabilities using a risk‑based, threat‑informed approach to support organisational objectives, regulatory requirements, and audit needs.
* Oversee the full lifecycle of vulnerabilities, including triage, mitigation planning, remediation recommendations, and stakeholder coordination.
* Develop and maintain vulnerability management policies, procedures, standards, and best‑practice guidance.
Threat Intelligence
* Produce high‑quality tactical, operational and strategic intelligence assessments and briefings using analysis and interpretation of current threat intelligence. Utilising and liaising with internal stakeholders, commercial sources, open‑source intelligence and government partners to provide a rounded, comprehensive view of the current threat landscape.
* Lead initiatives to strengthen the organisation's intelligence capability and participate in information sharing communities.
Incident Response Support
* Contribute and enhance our incident response processes, representing Cyber Security in operational incident calls, keeping stakeholders informed and liaising with government bodies to ensure timely and effective management of threat intelligence and threat hunting.
Cyber Risk Management
* Play an integral part in Cyber Security risk management, conducting risk and threat assessments aligned with regulations. Using your knowledge of standards and expertise to support our stakeholders by providing pragmatic and proportionate advice and best‑practice guidance.
Metrics & Reporting
* Develop and maintain actionable metrics that demonstrate the effectiveness of the organisation's vulnerability management and threat intelligence capabilities.
Qualifications
* Strong understanding and experience of vulnerability management, threat intelligence and security operations
* Experience of managing penetration testing programs
* Broad technical knowledge, especially around cloud and hybrid technologies.
* Highly organised and self‑motivated, able to manage and deliver on multiple concurrent tasks.
* Excellent communication and interpersonal skills. Ability to interact with stakeholders of all levels.
* A team player who is enthusiastic about contributing to the overall success of the team and collaborating with stakeholders of all levels.
* Sense of urgency and an ability to respond to tasks proactively and promptly.
* Continually stay abreast of emerging security technologies, threats and trends. Self‑motivated to drive their learning needs.
Location & Company
London, England, United Kingdom
1000 employees – Corporate / Direct Employer – Government Digital and Data is a community of experts leading digital transformation in government, creating more efficient services that have a meaningful impact on people's lives. Government Digital and Data professionals benefit from cross‑government events and learning. From webinars from the world's leading innovators to digital upskilling sessions. We enhance our professionals' skills and capabilities, which ultimately enables them to be a part of the world‑leading advancements in digital transformation and government innovation.
#J-18808-Ljbffr