At a Glance
- Tasks: Lead vulnerability management and enhance cyber defence capabilities in a dynamic team.
- Company: Join the Intellectual Property Office, a key player in cyber security.
- Benefits: Enjoy competitive salary, hybrid working, and extensive career development opportunities.
- Other info: Be part of a collaborative culture with a focus on continuous improvement.
- Why this job: Make a real impact on national security while growing your skills in a supportive environment.
- Qualifications: Experience in vulnerability management and excellent communication skills are essential.
The predicted salary is between 47766 - 47766 £ per year.
This role is for an experienced professional in vulnerability management and threat intelligence to join our Cyber Operations team. You will work closely with colleagues across the organisation to further mature and continuously improve our cyber defence capabilities. Cyber Operations forms part of a wider, well established security function operating within a highly regulated environment.
In this role, you will lead and continuously enhance the management of vulnerability assessments across our hybrid IT estate. You will prioritise remediation activities using a risk based, threat informed approach, collaborating with stakeholders to strengthen the security posture of our systems and services. You will also develop and mature our threat intelligence capability, identifying and maintaining relevant intelligence sources to inform tactical, operational, and strategic decision making. You will produce and share high quality threat intelligence products with internal and external stakeholders and use this intelligence to support vulnerability management and threat hunting activities. Additionally, you will contribute to incident response processes and provide support to colleagues responsible for the IPOs protection, detection, and response capabilities.
Main duties consist of but are not limited to:
- Vulnerability Management (Primary Focus)
- Lead and enhance the organisations vulnerability management programme, including our Penetration Testing programme across a complex hybrid IT environment covering both infrastructure and applications.
- Prioritise vulnerabilities using a risk-based, threat-informed approach to support organisational objectives, regulatory requirements, and audit needs.
- Oversee the full lifecycle of vulnerabilities, including triage, mitigation planning, remediation recommendations, and stakeholder coordination.
- Develop and maintain vulnerability management policies, procedures, standards, and best practice guidance.
- Threat Intelligence
- Produce high quality tactical, operational, and strategic intelligence assessments and briefings using analysis and interpretation of current threat intelligence.
- Utilising and liaising with internal stakeholders, commercial sources, open-source intelligence and government partners to provide a rounded, comprehensive view of the current threat landscape.
- Lead initiatives to strengthen the organisations intelligence capability and participate in information sharing communities.
- Cyber Risk Management
- Conduct risk and threat assessments aligned with regulations.
- Provide pragmatic and proportionate advice and best practice guidance.
- Metrics & Reporting
- Develop and maintain actionable metrics that demonstrate the effectiveness of the organisations vulnerability management and threat intelligence capabilities.
- Incident Response Support
- Contribute to and enhance our incident response processes, representing Cyber Security in operational incident calls.
Person specification
Essential Technical
- Strong understanding and experience of vulnerability management, threat intelligence and security operations within a complex enterprise environment.
- Experience of managing and developing penetration testing programs.
- Knowledge of secure development practices and where security testing for vulnerabilities fits into the Software Development Lifecycle (SDLC).
- Broad technical knowledge, especially around hybrid and cloud architectures, identity management and application security.
Essential Experience
- Highly organised and self-motivated, able to manage and deliver on multiple concurrent tasks.
- Excellent communication and interpersonal skills.
- Ability to interact with stakeholders of all levels with the ability to explain complex security concepts to non-technical audiences.
- A team player who is enthusiastic about contributing to the overall success of the team and collaborating with stakeholders of all levels.
- Sense of urgency and an ability to respond to tasks proactively and promptly.
- Continually stay abreast of emerging security technologies, threats and trends.
- Self-motivated to drive their learning needs.
How to Apply
Click the 'Apply now' button and complete the application form by providing the following:
- Your CV
- 500-word Personal Statement
- Technical Provide a 250-word example that demonstrates your technical ability: Penetration testing (focussed on managing penetration testing programs rather than conducting the tests yourself) : Level - Practitioner
Benefits
- Alongside your salary of £47,766, Intellectual Property Office contributes £13,837 towards you being a member of the Civil Service Defined Benefit Pension scheme.
- Unlimited Pluralsight video learning access.
- Access to Microsofts ESI training suite.
- Hybrid working with no core hours.
- Substantial support for career progression.
- 25 days annual leave moving to 30 days in annual increments.
- 8 days public leave and 1 day privilege leave.
Locations
Threat and Vulnerability Manager in Newport, Wales employer: Intellectual Property Office
The Intellectual Property Office (IPO) is an exceptional employer, offering a dynamic work environment in Newport that fosters collaboration and innovation within the Cyber Operations team. With a strong commitment to employee growth, the IPO provides substantial support for career progression, unlimited access to learning resources, and a generous benefits package including a Civil Service pension scheme and flexible hybrid working arrangements. Join us to make a meaningful impact in enhancing our cyber defence capabilities while enjoying a supportive and inclusive workplace culture.
Contact Details:
Intellectual Property Office Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Threat and Vulnerability Manager in Newport, Wales
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who work at the IPO or similar organisations. A friendly chat can sometimes lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for the interview by brushing up on your technical skills and understanding of vulnerability management. We recommend practising common interview questions related to threat intelligence and incident response to show you're ready to tackle the role head-on.
✨Tip Number 3
Showcase your passion for cyber security! During interviews, share your thoughts on emerging threats and how you stay updated with the latest trends. This will demonstrate your commitment to continuous learning and improvement, which is key for this role.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining our team and contributing to our mission.
We think you need these skills to ace Threat and Vulnerability Manager in Newport, Wales
Some tips for your application 🫡
Craft a Stellar CV:Your CV is your first impression, so make it count! Ensure it highlights your experience in vulnerability management and threat intelligence clearly. Remember to remove any identifying markers as per the application guidelines.
Nail Your Personal Statement:This is your chance to shine! Use the 500-word personal statement to showcase why you're the perfect fit for the role. Structure it around the essential criteria and back up your claims with solid examples from your experience.
Show Off Your Technical Skills:Don’t forget the technical example! In 250 words, demonstrate your ability in managing penetration testing programmes. Make sure it aligns with the technical criteria listed in the job description to really impress us.
Apply Through Our Website:We encourage you to apply through our website for a smooth application process. It’s the best way to ensure your application gets the attention it deserves, so don’t miss out!
How to prepare for a job interview at Intellectual Property Office
✨Know Your Vulnerabilities
Before the interview, brush up on your knowledge of vulnerability management and threat intelligence. Be ready to discuss specific examples from your experience, especially around managing penetration testing programmes. This will show that you not only understand the theory but can also apply it in practice.
✨Communicate Clearly
Since this role involves liaising with stakeholders at all levels, practice explaining complex security concepts in simple terms. Use relatable analogies or examples to demonstrate your communication skills. This will help you connect with the interviewers and showcase your ability to work collaboratively.
✨Showcase Your Organisational Skills
Be prepared to discuss how you manage multiple tasks and prioritise effectively. Share specific instances where you successfully juggled various responsibilities, particularly in a high-pressure environment. This will highlight your organisational skills and your ability to deliver results.
✨Stay Current with Trends
Demonstrate your commitment to continuous learning by discussing recent trends in cyber security and emerging threats. Mention any relevant courses or certifications you've pursued. This shows that you're proactive about staying informed and can bring fresh insights to the team.
