Skip to main content

This job has expired

Senior Vulnerability Management Engineer

Employer
NEXT
Location
Leicester, Leicestershire
Salary
£45,696 p/a
Closing date
19 Feb 2021

View more

Job Details

Summary of Role

Working in the Information Security team you will focus on vulnerability management across the Next technology estate.

You will be responsible for identifying, assessing, validating and communicating new vulnerabilities across the other technical teams, ensuring the vulnerability management process is followed. Where required you will work with other IT teams to provide guidance and recommend mitigation strategies for vulnerabilities.

As a Senior Vulnerability Management Engineer you will be tasked with the management of third party penetration tests. You will also help manage and configure our vulnerability scanning tools as well as administering Next’s Bug Bounty programme.

The role also requires you to review incoming threat intelligence in order to assess its relevance to our business, where appropriate you will provide reports on threats of interest and work with the relevant teams to proactively mitigate any risk.

You will also be expected to maintain an awareness of the changing threat landscape and industry standards, proactively working to identify opportunities to improve the security of our environment and counter new threats.

As a Senior Vulnerability Management Engineer you will also help mentor more inexperienced members of the team. You will also take a lead role in coordinating and overseeing efforts to mitigate significant threats or vulnerabilities identified by the team.

Key Responsibilities

  • Manage and maintain Vulnerability Scanning tool.
  • Plan and coordinate Penetration Testing.
  • Manage Next’s Bug Bounty programme.
  • Identify and execute relevant Red vs Blue scenarios.
  • Ensure all relevant vulnerabilities are correctly triaged, risk assessed, logged and assigned to remediation teams.
  • Support remediation teams with remediation strategies.
  • Review threat intelligence and advise on recommended mitigation strategies where appropriate.
  • Assist Incident Response team with the investigation and resolution of Security Incidents when required.
  • Manage and maintain metrics and reporting to demonstrate the effectiveness of our vulnerability management programme.
  • Subject matter expert for the Vulnerability Management team and helps coordinate efforts when managing emergency remediation/mitigation.
  • Create and maintain operational procedures, configuration and technical documentation to a high standard.
  • Maintain an awareness of new and emerging security threats and trends.
  • Act as a mentor for more inexperienced members of the Vulnerability Management team.

 

Criteria Essential

  • Experience managing and maintaining a Vulnerability Management tool.
  • In depth understanding of Information Security including malware, emerging threats, attacks, and vulnerability management.
  • 5+ years of proven Information Technology experience with an excellent understanding of network protocols and server infrastructure.
  • Windows Server and/or Linux experience.
  • Ability to take a lead role in coordinating the timely diagnosis and resolution of major issues.
  • Adheres to and promotes high standards.
  • Understand and operate change management
  • A team player who is hardworking and self-motivated.
  • Ability to effectively plan and prioritise workloads, and to measure and report on current progress.
  • Ability to remain calm under pressure and clearly communicate to all levels of management.
  • Excellent attention to detail.
  • Adheres to and promotes high standards.

Desirable

  • Experience with security or compliance standards such as PCI-DSS or ISO27001.
  • Understanding and experience of working for a Retail company.
  • Relevant industry recognised security qualification.

​Benefits

  • Bonus Scheme
  • Pension Scheme
  • ShareSave Scheme
  • Life Assurance
  • Staff Discount
  • On-site Nursery

About Next

You know Next, but did you know we’re a FTSE-100 retail company employing over 43,000 people across the UK and Ireland. We’re the UK’s 2nd largest fashion retailer and for Kidswear we’re the market leader. At the last count we have over 540 stores, plus the Next Online and it’s now possible to buy on-line from over 70 countries around the world! So we’ve gone global!

Company

NEXT is a British multinational clothing, footwear and home products retailer headquartered in Enderby, Leicestershire. It has around 700 stores, of which circa 500 are in the United Kingdom, and circa 200 across Europe, Asia and the Middle East. Next is the largest clothing retailer by sales in the United Kingdom, having overtaken Marks & Spencer in early 2012 and 2014. It is listed on the London Stock Exchange and is a constituent of the FTSE 100 Index.

View our Top Employer profile

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert