Join to apply for the Cyber Threat and Vulnerability Manager role at Gespreksleider Jacobs.
Join a team at the heart of the global economy! The Department for International Trade (DIT) and Inspire People are partnering together to bring you an exciting opportunity for a Threat and Vulnerability Manager to protect DIT and the wider UK government from cyber threats in a fast-paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). The salary range is £62,534 to £82,200 (including allowances) for London and £62,534 to £78,580 for other locations, based on technical skills and interview assessment.
Flexible, hybrid working from London, Salford, Birmingham, Cardiff, Darlington, Edinburgh or Belfast.
As the Cyber Threat and Vulnerability Manager you will help protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, you will manage and be responsible for the Threat and Vulnerability Management function within the SOC, providing leadership on identification and improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and empowered with the right information to take appropriate actions.
Main Responsibilities
* Working with the Security Leadership team to develop a strategic roadmap for an effective vulnerability detection, assessment, remediation, and threat intelligence program.
* Line management of the threat and vulnerability management team.
* Building sustainable relationships to champion the adoption of vulnerability and threat management, compliance, and penetration testing programs across the Department.
* Managing the relationship with 3rd‑party pen testing providers and scheduling tests.
* Developing, implementing, and maintaining the organisation's vulnerability management strategy, policies, standards, and procedures.
* Being accountable for thorough assessments of the department's systems, networks, and applications.
* Recommending remediation strategies and advising on complex configuration changes to support vulnerability remediation.
* Driving prioritisation of those vulnerabilities through a risk‑based approach to meet organisational objectives such as regulatory compliance and audit functions.
* Developing and maintaining actionable key performance and risk indicators (KPIs & KRIs) that provide visibility into the effectiveness of the department's Vulnerability Management & Threat Intelligence program.
* Continuously improving DBT’s TVM program maturity and security posture by driving successful remediation efforts with internal and external teams responsible for infrastructure and applications.
Essential Skills and Experience
* Holding a professional information security qualification such as CISSP, CISM, MSc in Cyber Security, etc.
* Managing a Threat and Vulnerability Management function, with the ability to influence, collaborate and build relationships with stakeholders across varying levels of technical security competence.
* Solid understanding of vulnerability management, encompassing comprehensive knowledge of vulnerability scanning and threat intelligence tools, risk assessment methodologies, and remediation planning in a multi‑cloud environment.
* Experience managing the scoping, execution, and assessment of supplier‑led pen testing.
* Excellent written and verbal communication skills, including the ability to relate technical information to a non‑technical audience.
* Working independently and as part of a larger team to deliver a risk‑based response, demonstrating adaptability with a forward‑thinking and collaborative approach.
Benefits
* Learning and development tailored to your role.
* A flexible, hybrid working environment with options such as condensed hours.
* A culture encouraging inclusion and diversity.
* A Civil Service pension with an average employer contribution of 27%.
* Annual leave starting at 25 days rising to 30 days with service.
* Three paid volunteering days a year.
* An employee benefits programme including cycle‑to‑work.
Job Details
* Seniority level: Mid‑Senior level
* Employment type: Full‑time
* Job function: Engineering and Information Technology
* Industries: Construction
#J-18808-Ljbffr