Overview
Join us as a Vulnerability Assessment Security Engineer and help strengthen the security posture of a global banking organisation. This role is ideal for someone with a solid technical foundation in cybersecurity who is eager to grow, learn, and make a meaningful impact. We’re looking for an enthusiastic person who shows curiosity and is committed to continuous improvement.
You’ll be responsible for maintaining and operating vulnerability assessment tools, ensuring scanning coverage across the bank, and supporting integration with broader security and IT systems. You’ll collaborate with engineering, remediation, and delivery teams to ensure vulnerabilities are identified, understood, and addressed effectively.
Responsibilities
* Review requirements and support the design, deployment, and maintenance of vulnerability assessment tools (e.g. Tenable, Rapid7, Qualys), including collaboration with engineering and support of related components.
* Manage credentials and access for scanning systems, integrate tools with platforms like Splunk and ServiceNow, and document processes, architecture, and system builds.
* Operate scanning tools, maintain coverage, and support remediation teams in interpreting vulnerabilities across asset types (e.g. laptops, VMs, wireless devices), while contributing to asset repository and scan policy development.
* Collaborate with delivery managers and technical stakeholders to prioritise tasks, provide Tier 2/3 support for security tools, and continuously improve deployments through integration of new technologies and services.
Valued Skills
Some Other Highly Valued Skills May Include:
* Experience in the financial services sector.
* Exposure to additional security tools such as Firewall Assurance, CASB, and CSPM.
You may be assessed on key critical skills relevant for success in the role, such as risk and controls, change and transformation, business acumen, strategic thinking and digital and technology, as well as job-specific technical skills.
Role Details
This role will be based in Knutsford, Northampton or Glasgow.
Accountabilities
* Provision of subject matter expertise on security systems and engineering patterns.
* Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems.
* Management and protection of secrets, ensuring that they are securely generated, stored, and used.
* Execution of audits to monitor, identify and assess vulnerabilities in the bank's infrastructure/software and support the response to potential security breaches.
* Identification of advancements to support the innovation and adoption of new cryptographic technologies and techniques.
* Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements.
* Development/Implementation and maintenance of Identity and Access Management solutions and systems.
Analyst Expectations
* Perform prescribed activities in a timely manner and to a high standard, consistently driving continuous improvement.
* Requires in-depth technical knowledge and experience in the assigned area of expertise.
* Thorough understanding of the underlying principles and concepts within the area of expertise.
* Lead and supervise a team, guiding and supporting professional development, allocating work requirements and coordinating team resources. For individual contributors, develop technical expertise and act as an advisor where appropriate.
* Engage with other functions and business areas; take responsibility for end results of a team’s operations; escalate breaches of policies/procedures appropriately; embed new policies/procedures due to risk mitigation.
* Advise and influence decision making within own area of expertise; manage risk and strengthen controls; deliver work in line with relevant rules, regulation and codes of conduct.
* Maintain understanding of how sub-functions integrate with the organisation and demonstrate how areas coordinate to achieve objectives.
* Make evaluative judgments based on factual information; resolve problems by applying technical experience; guide and persuade team members and communicate complex information.
* Act as a point of contact for stakeholders outside the immediate function and build an external network.
Values
All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship, and the Barclays Mindset to Empower, Challenge and Drive.
#J-18808-Ljbffr