Principal Digital Recruiter at Pontoon Solutions (Adecco)
Digital Vulnerability oversight manager
London
6 month contract
Purpose of Job
* Support the oversight, governance, and enhancement of vulnerability management activities within BI Plc.
* Lead smaller‑scale projects independently, analysing and developing frameworks and procedures, ensuring alignment with regulatory requirements and industry best practices.
* Analysing reporting on vulnerability management from third parties, identifying areas of risk for escalation and ensuring their posture remains within our risk appetite.
* Refining metrics and reporting on vulnerability management, ensuring effective reporting and understanding of resilience risks.
* Engage with stakeholders on operational and tactical matters, supporting the VP in strategic initiatives and remediation oversight.
Background
Security and Operations exist to ensure that the Bank’s security risks are managed and aligned with business objectives, enabling sustained growth and preventing harm, damage, or loss to its people, information, or assets.
This AVP role within the Cyber Resilience Team offers an opportunity to drive the enhancement of oversight of vulnerability management activities and contribute to the bank’s ongoing regulatory compliance under DORA and other regimes. The AVP will work closely with the Threat and Vulnerability Management Lead (VP), supporting strategic initiatives while leading operational delivery.
Facts / Scale
* Oversight of services provided by third parties, and vulnerability management activities within BI Plc.
* Provide insights into vulnerability management performance, maintain records, track key metrics, and elevate issues as needed.
* Engage with stakeholders across London, the region, and globally, contributing to governance forums and remediation efforts.
* Review and enhance frameworks and procedures to strengthen our approach and ensure ongoing regulatory compliance.
* No budget responsibility.
Accountabilities & Responsibilities
* Lead oversight of vulnerability scanning and vulnerability management activity, ensuring regulatory compliance and resilience assurance.
* Lead gap analysis and enhancement of frameworks and procedures on vulnerability management to enhance effectiveness.
* Drive engagement with key third party service providers on vulnerability management, supporting effective reporting and SLA adherence.
* Assist in designing and implementing policies, procedures, and frameworks related to testing and vulnerability management.
* Refining and reporting on key metrics and contribute to governance forums, ensuring visibility of risks and progress.
* Analysing reporting on vulnerability management from third parties, identifying areas of risk for escalation and ensuring their posture remains within our risk appetite.
Knowledge, Skills, Experience & Qualifications
* Solid understanding of frameworks such as NIST, ISO27001, OWASP, CVSS.
* Working knowledge of regulatory requirements including DORA, CBEST, and BoE Operational Resilience.
* Degree in computer science or similar, or equivalent work experience.
* Experience in a relevant cyber security field within a regulated environment, ideally Financial Services.
* Strong stakeholder engagement and communication skills, with ability to convey technical issues to non-technical audiences.
* Analytical and problem‑solving skills with attention to detail.
* Experience in vulnerability management programmes and remediation delivery, including working knowledge of scan tools.
* Familiarity with risk management practices and basic coding/automation skills.
* Keeping pace with evolving threat and regulatory landscapes.
* Balancing delivery of vulnerability management activities with stakeholder expectations and global alignment.
* Managing cross‑regional coordination and ensuring effective remediation.
Application Instructions
If you believe you have the experience required, please apply with your CV now for instant consideration!
Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.
EEO Statement
*Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone’s chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive.
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Other
#J-18808-Ljbffr