Network Information Security - Vulnerability Management Senior Manager
As the threat landscape evolves, security hygiene remains a top priority to ensure we are protected from cyber attacks.
The PwC Network Information Security team is looking to recruit an enthusiastic security hygiene/vulnerability management specialist to lead and further improve the capability of the UK team to detect and resolve security vulnerabilities. Working with technical teams across the business, technology and global security functions, this role will ensure a consistent, robust, and efficient approach to defending PwC applications, systems, databases and data repositories, middleware, servers, networks, and end points from a cyber-attack resulting from unpatched security vulnerabilities. This Vulnerability Management Lead role reports in to the Head of Vulnerability Management.
What your days will look like
Identification and detection of security vulnerabilities in a timely manner to ensure compliance with our Network Information Security policy and vulnerability management standard, as well as being compliant with requirements for ISO 27001:2013 and Cyber Essentials Plus.
Translates vulnerability hygiene strategy by leading, influencing or managing others and performing work with significant autonomy and independence;
Defines the security hygiene/vulnerability management strategy and supervises teams to execute against overall strategy;
Ensures daily assessment of vulnerabilities identified by infrastructure scans and penetration tests and prioritises vulnerabilities discovered;
Evaluates, rates and performs risk assessments on vulnerable assets (servers, laptops, applications etc) to determine appropriate course of action;
This role is for you if
Passionate about Information Security and suggesting new technical and procedural solutions to improve security vulnerability detection and management, as well as the work of the wider team;
Able to quickly understand security vulnerability risk, issues and problems and take a logical problem-solving approach to their resolution;
Influencing and negotiation skills to resolve conflicts between stakeholders at all levels of the organisation;
Ability to communicate technical information into business language for non-technical business colleagues;
Build consensus and collaborate with a range of stakeholders including global information security experts, technology and risk teams;
Practical experience with the Tenable vulnerability scanning tool is desirable;
What you’ll receive from us
No matter where you may be in your career or personal life, our benefits are designed to add value and support, recognising and rewarding you fairly for your contributions.
We offer a range of benefits including empowered flexibility and a working week split between office, home and client site; private medical cover and 24/7 access to a qualified virtual GP; six volunteering days a year and much more.
