Vulnerability Management Cyber Security Lead

  • Full Time
  • Swindon
  • Location: Swindon
  • Ref: R001900313
  • Salary: £34960 - £50497


Nationwide Building Society is a British financial institution with over 160 years of expertise and experience looking after the interests of its members. As the largest building society in the world, Nationwide has mutual (as opposed to Public Limited Company) status. Simply put, that means that we're owned by and run for the benefit of our members.

We need:

A Vulnerability Management Cyber Security professional based at Nationwide house Swindon.
£34960 – £50497 depending on experience. On a permanent contract in the Security department.
Send in your application by 17 November 2017.
As the cyber world becomes more advanced, with greater reliance put on computer systems, we need to be sure we are keeping our equipment in a safe and well protected state. With the introduction of Open Banking, new technologies will be presenting new opportunities and challenges for Vulnerability Management. This has led to an opportunity to expand our Vulnerability Management team. So we are looking to recruit a security professional with a strong interest in the technical aspects of security and the resolution of vulnerabilities. The role will be working with Industry standard vulnerability scanners such as Qualys to find, review and working with partners, remediate the vulnerabilities that are found.

Who we’re looking for

As a minimum requirement you’ll:

have strong communication skills both verbal and written that has been demonstrated by influencing key stakeholders
have a good understanding of vulnerabilities and patch management
have a background in technology and/or information security
be adept in dealing with complex issues both in a technical and non-technical context
have experience with standard tools such as MS Office and SharePoint to create, manipulate, manage and share report data.

It would be nice if you also had:

An industry recognised qualification such as Security+
Experience of industry standard security tools– Especially Qualys, WSUS, CM2012 and Service Now

What you’ll be doing

In this role, you will be dealing with both internal and external stakeholders who are tasked with resolving the vulnerabilities and ensuring that changes required to improve the security of the systems are achieved in good time.

You will be expected to work proactively to ensure that accurate reports are generated in a timely manner, and vulnerabilities, including the risk they present, are reviewed and understood by the wider team and key stakeholders.

You will get involved in both vulnerability detection and vulnerability remediation thus a good appreciation of the Windows platform, Networking and general security topics and terminology will be important – examples being SQLi, XSS, DDoS and MitM.

PCI-DSS also informs many of the actions that need to be taken and an understanding of this would be advantageous.

Accuracy and an eye for detail is critical in this role to ensure vulnerabilities are assessed correctly and driven through to resolution.

Training will be provided for the key technologies that we are using.

You must register to apply for this job.