At a Glance
- Tasks: Lead vulnerability management using tools like Qualys to enhance cyber security.
- Company: Join a forward-thinking organisation focused on cyber security excellence.
- Benefits: Flexible work schedule, competitive pay, and opportunities for professional growth.
- Other info: Collaborative environment with a focus on continuous improvement and innovation.
- Why this job: Make a real difference in reducing cyber risks and enhancing security.
- Qualifications: Experience with vulnerability management tools and a solid understanding of cyber security principles.
The predicted salary is between 50000 - 60000 £ per year.
The Vulnerability Management Subject Matter Expert (SME) is responsible for the design, delivery, and continuous improvement of the organisation’s vulnerability management service for End User Compute devices. The role focuses on utilising tools such as Qualys to identify, assess, prioritise, and support the remediation of vulnerabilities across infrastructure, endpoints, and cloud environments.
The SME ensures that vulnerabilities are effectively managed in line with organisational risk appetite and security standards, supporting a proactive approach to reducing cyber risk. This includes maintaining accurate vulnerability data, driving remediation activities, and ensuring alignment with governance, compliance, and audit requirements across the organisation.
Key Accountabilities
- Deliver and support vulnerability management capabilities using Qualys, including asset discovery, vulnerability scanning, and risk prioritisation.
- Analyse and interpret End User Compute vulnerability data, providing actionable insights and remediation recommendations.
- Collaborate with endpoint management and application management SMEs to action remediation activities.
- Monitor and report on vulnerability posture, risk exposure, and remediation performance across the organisation.
- Develop and maintain automation and reporting capabilities to improve efficiency and visibility of vulnerability management activities.
- Collaborate with cyber security, risk, and service management teams to ensure alignment with governance, compliance, and risk frameworks.
Skills, Knowledge & Experience
- Proven experience operating vulnerability management tools (e.g. Qualys) in an enterprise environment.
- Strong understanding of vulnerability management lifecycle, including scanning, prioritisation, and remediation.
- Knowledge of common security vulnerabilities, risk scoring (e.g. CVSS), and remediation approaches.
- Experience working with endpoint management tools like Intune and SCCM to support vulnerability remediation.
- Understanding of cyber security principles, risk management, and ITIL-based service management practices.
- Experience integrating vulnerability management tools with enterprise platforms (e.g. ServiceNow).
- Familiarity with cloud environments (e.g. Azure) and associated security considerations.
- Knowledge of patch management processes and tools.
- Scripting or automation experience (e.g. PowerShell, Python).
- Experience supporting audit, compliance, or regulatory requirements.
Cyber and Information Security Consultant in Havant employer: Lorien
As a Cyber and Information Security Consultant in Havant, you will join a forward-thinking organisation that prioritises employee growth and development within a collaborative work culture. With a focus on innovation and continuous improvement, the company offers flexible working arrangements, including 2-3 days onsite, and provides access to cutting-edge tools like Qualys, ensuring you are well-equipped to excel in your role while contributing to a proactive approach to cyber risk management.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber and Information Security Consultant in Havant
✨Tip Number 1
Network, network, network! Get out there and connect with people in the cyber security field. Attend meetups, webinars, or even local events. You never know who might have a lead on your next job!
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your experience with vulnerability management tools like Qualys. This can really set you apart from other candidates.
✨Tip Number 3
Don’t just apply for jobs; engage with the companies you’re interested in. Follow them on social media, comment on their posts, and share relevant content. It shows you're genuinely interested and can help you get noticed.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, it’s super easy to keep track of your applications!
We think you need these skills to ace Cyber and Information Security Consultant in Havant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with vulnerability management tools like Qualys. We want to see how you've tackled vulnerabilities in past roles, so don’t hold back on those details!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for the Cyber and Information Security Consultant role. Share specific examples of your work with vulnerability management and how you’ve contributed to reducing cyber risk.
Showcase Your Skills:Don’t forget to mention your knowledge of security vulnerabilities and risk scoring. We love candidates who can demonstrate a solid understanding of the vulnerability management lifecycle, so make that clear in your application!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Lorien
✨Know Your Tools Inside Out
Make sure you’re well-versed in vulnerability management tools like Qualys. Be ready to discuss how you've used these tools in past roles, including specific examples of asset discovery and vulnerability scanning.
✨Understand the Vulnerability Lifecycle
Brush up on the entire vulnerability management lifecycle, from scanning to remediation. Be prepared to explain how you prioritise vulnerabilities based on risk scoring, such as CVSS, and how you’ve implemented remediation strategies.
✨Collaboration is Key
This role involves working closely with other SMEs, so highlight your teamwork skills. Share examples of how you’ve collaborated with endpoint management or application management teams to drive remediation activities.
✨Showcase Your Automation Skills
If you have experience with scripting or automation, like PowerShell or Python, make sure to mention it. Discuss any projects where you developed automation capabilities to improve efficiency in vulnerability management.
