Be among the first 25 applicants
Company Description
Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities. We serve more than 5.5m customers everyday in over 175 countries, with a global ecosystem of market-leading partners. Global strategic hubs: Spain, Brazil, the UK, Germany. The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI, Enterprise Applications, Digital Workplace, Cyber Security & Networking. Values: Open, Bold, Trusted. Trusted Partners: Microsoft, HPE, Fortinet, Palo Alto & Crowdstrike.
Job Title
Vulnerability Manager (Tenable Platform) - MSSP
Location
Daresbury, Warrington. This role offers flexibility with remote working options.
Reports To
SOC Manager
Key Responsibilities
* Tenable Platform Management: Administer, configure, and optimize the Tenable vulnerability management platform across multiple client environments; develop, schedule, and execute regular vulnerability scans (internal, external, web application, cloud, container); manage Tenable agents, scanners, and integrations; troubleshoot and resolve issues; stay abreast of new Tenable features and updates and implement them to enhance service delivery.
* Vulnerability Identification & Analysis: Analyze scan results to identify and assess vulnerabilities across on-premises, cloud, endpoints, applications, and networks; prioritize based on risk using CVSS, threat intelligence, asset criticality, and client context; conduct in-depth CVE research.
* Reporting & Communication: Generate vulnerability reports and dashboards for technical, management, and executive stakeholders; present findings and remediation recommendations; track remediation progress and program effectiveness.
* Remediation & Advisory: Work with client IT, operations, and development teams to guide remediation; recommend patching, configuration changes, architectural improvements, and compensating controls; coordinate with internal security teams as needed.
* Process Improvement & Compliance: Develop and improve vulnerability management policies, procedures, and runbooks; ensure alignment with NIST, ISO 27001, CIS Controls and regulatory requirements (GDPR, PCI DSS); support audits with documentation and evidence.
* Threat Intelligence & Research: Stay current with threats and vulnerability disclosures; integrate threat intel into assessments to enhance prioritization.
Required Skills & Experience
* Proven Experience: Minimum 5 years in cybersecurity, with at least 3 years in vulnerability management within an MSSP or large enterprise.
* Tenable Expertise: Hands-on experience with Tenable.io, Tenable.sc, Nessus Professional, Nessus Agents; Tenable One experience desirable.
* Technical Acumen: Knowledge of networks, Windows/Linux, cloud platforms (AWS, Azure, GCP), databases, and web apps.
* Vulnerability Assessment: Ability to interpret scan results, perform risk assessments, and apply CVSS.
* Cybersecurity Frameworks: Familiarity with NIST CSF, ISO 27001, CIS Controls, OWASP Top 10.
* Analytical & Problem-Solving: Strong analytical skills for identifying trends and root causes; effective solutions.
* Communication: Clear written and verbal communication for technical and non-technical audiences; strong stakeholder engagement.
* Collaboration: Able to work in a fast-paced, client-facing environment with internal and external stakeholders.
* Certifications (Highly Desirable): Tenable certifications and industry certs such as CISSP, CISM, CompTIA Security+, CEH.
* Clearance: Ability to pass SC clearance.
Education
* Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent practical experience.
What We Offer
* Opportunity to work with a leading global MSSP and manage cutting-edge security technologies.
* Exposure to a diverse range of client environments and industries.
* Continuous professional development and training opportunities.
* A collaborative and innovative work environment.
* Competitive salary and benefits package.
Additional Information
We don’t believe hiring is a tick box exercise, so if you feel that you don’t match the job description 100%, but would still be a great fit for role, please get in touch.
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Other
Industries: IT Services and IT Consulting
Referrals increase your chances of interviewing at Telefónica Tech (EN) by 2x
#J-18808-Ljbffr