Role Purpose
Reporting to the Head of Application Security, you will be responsible for the day‑to‑day operation and continuous improvement of Iress’s Vulnerability Management program. Your goal is to ensure that security risks within our global infrastructure and applications are identified, analysed, and remediated. You will act as the vital link between our automated security tools and the engineering teams who implement the fixes.
Responsibilities
* Lead expert investigations into cyber vulnerabilities.
* Partner with business units to prioritise and agree on fast, effective remediation that hits our security KPIs.
* Direct the analysis of security risks and present clear, actionable solutions to the CISO and senior stakeholders to keep Iress systems resilient.
* Take ownership of emerging threats by translating their potential impact into robust security strategies that strengthen our global defenses.
* Analyse and challenge security data to ensure our leadership receives an accurate picture of emerging risks.
* Mentor and guide engineering teams, ensuring they have the support and knowledge to follow world‑class security procedures.
* Lead cross‑functional efforts to track new threats and build mitigation strategies before they can impact the business.
Core Skills, Knowledge and Attributes
* Communication: Clearly explain complex risks to both technical and non‑technical stakeholders and provide actionable recommendations that drive risk‑based decisions.
* Infrastructure Experience: Proven experience managing security across cloud, hybrid and on‑premises environments, with a strong grasp of cloud‑hosted security principles.
* Vulnerability Assessment: Strong knowledge of the tools and methods used to assess large, complex IT infrastructures.
* Threat Analysis: Skilled at analysing new cybersecurity threats and developing practical mitigation strategies.
* Global Collaboration: Ability to work effectively with colleagues across different functions and time zones, including our Australian teams.
* Strategic Insights: Use insight into threat actor behaviour and capabilities to enrich our security data and help prioritise remediation across multiple systems based on potential impact.
Accountabilities & Deliverables
* Produce regular, accurate vulnerability heatmaps and progress reports for the Head of AppSec.
* Provide engineering teams with "clean", prioritised lists of vulnerabilities to ensure their time is spent on high‑impact fixes.
* Assist in the drafting and updating of vulnerability management standards and remediation SLAs.
* Track and report on remediation timelines to ensure risks are closed within agreed windows.
Key Relationships
* InfoSec Heads (Application Security, Security Engineering, Security Operations and Global Risk & Compliance)
* Chief Information Security Officer
* Chief Technology Officer
* Business Unit Heads of Engineering (Group, Trading & Market Data, Sourcing and Wealth)
Benefits
* 8 paid days per year to extend your weekends
* 25 days annual leave
* State‑of‑the‑art offices
* Free on‑site gym in our Cheltenham office open 24/7
* New Short‑Term Incentive and Recognition program
* Casual dress, flexible work policy
* Access to learning and development programs through LinkedIn Learning
* 3 days’ leave per year for charity initiatives
* Starting school leave – 8.5 days of leave to assist your kids with the transition to school
* Life Insurance & Private Medical
* Up to 26 weeks’ paid parental leave for primary carers (up to 4 weeks for secondary carers)
* Ability to work part‑time when returning to work
Employee Commitments
Iress is committed to fostering a welcoming and inclusive culture. We strongly believe that diversity is what makes our teams and our products succeed. Our hiring decisions are never based on sexual orientation, race, gender identity, religion, disability, citizenship, marital or family status and age. Even if you feel you don’t meet all of the requirements of the role, we would still like to hear from you! We’re also proud to be globally recognised as a WORK180 Endorsed Employer that promotes and supports all women in the workplace.
Contact
Contact the Iress recruitment team at: recruitment@iress.com
#J-18808-Ljbffr