At a Glance
- Tasks: Lead vulnerability management using tools like Qualys to enhance cyber security.
- Company: Join a forward-thinking organisation focused on reducing cyber risk.
- Benefits: Flexible work schedule, competitive pay, and opportunities for professional growth.
- Other info: Collaborative environment with a focus on innovation and continuous improvement.
- Why this job: Make a real difference in cyber security while developing your skills.
- Qualifications: Experience with vulnerability management tools and a solid understanding of cyber security principles.
The predicted salary is between 45000 - 55000 £ per year.
The Vulnerability Management Subject Matter Expert (SME) is responsible for the design, delivery, and continuous improvement of the organisation’s vulnerability management service for End User Compute devices. The role focuses on utilising tools such as Qualys to identify, assess, prioritise, and support the remediation of vulnerabilities across infrastructure, endpoints, and cloud environments. The SME ensures that vulnerabilities are effectively managed in line with organisational risk appetite and security standards, supporting a proactive approach to reducing cyber risk. This includes maintaining accurate vulnerability data, driving remediation activities, and ensuring alignment with governance, compliance, and audit requirements across the organisation.
Key Accountabilities
- Deliver and support vulnerability management capabilities using Qualys, including asset discovery, vulnerability scanning, and risk prioritisation.
- Analyse and interpret End User Compute vulnerability data, providing actionable insights and remediation recommendations.
- Collaborate with endpoint management and application management SMEs to action remediation activities.
- Monitor and report on vulnerability posture, risk exposure, and remediation performance across the organisation.
- Develop and maintain automation and reporting capabilities to improve efficiency and visibility of vulnerability management activities.
- Collaborate with cyber security, risk, and service management teams to ensure alignment with governance, compliance, and risk frameworks.
Skills, Knowledge & Experience
- Proven experience operating vulnerability management tools (e.g. Qualys) in an enterprise environment.
- Strong understanding of vulnerability management lifecycle, including scanning, prioritisation, and remediation.
- Knowledge of common security vulnerabilities, risk scoring (e.g. CVSS), and remediation approaches.
- Experience working with endpoint management tools like Intune and SCCM to support vulnerability remediation.
- Understanding of cyber security principles, risk management, and ITIL-based service management practices.
- Experience integrating vulnerability management tools with enterprise platforms (e.g. ServiceNow).
- Familiarity with cloud environments (e.g. Azure) and associated security considerations.
- Knowledge of patch management processes and tools.
- Scripting or automation experience (e.g. PowerShell, Python).
- Experience supporting audit, compliance, or regulatory requirements.
Cyber/ Information Security Analyst in Havant employer: Lorien
As a Cyber/Information Security Analyst at our Havant location, you will join a dynamic team dedicated to enhancing our vulnerability management services. We pride ourselves on fostering a collaborative work culture that encourages professional growth and innovation, offering opportunities for continuous learning and development. With a focus on employee well-being and a commitment to maintaining a healthy work-life balance, we provide a supportive environment where your contributions are valued and recognised.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber/ Information Security Analyst in Havant
✨Tip Number 1
Network, network, network! Get out there and connect with folks in the cyber security field. Attend meetups, webinars, or even local events. You never know who might have a lead on that perfect Vulnerability Management SME role!
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your experience with tools like Qualys. This can really set you apart when you're chatting with potential employers.
✨Tip Number 3
Don’t just apply for jobs; tailor your approach! Research the companies you’re interested in and understand their vulnerability management needs. When you reach out, mention how your skills align with their goals.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities waiting for you. Plus, it’s a great way to ensure your application gets seen by the right people. Let’s get you that Cyber/Information Security Analyst position!
We think you need these skills to ace Cyber/ Information Security Analyst in Havant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber/Information Security Analyst role. Highlight your experience with vulnerability management tools like Qualys and any relevant projects you've worked on. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about vulnerability management and how you can contribute to our team. Be sure to mention your understanding of cyber security principles and risk management.
Showcase Your Skills:In your application, don't forget to showcase your technical skills, especially around vulnerability scanning and remediation. If you've got experience with automation or scripting, let us know! We love candidates who can bring efficiency to our processes.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you'll be able to keep track of your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Lorien
✨Know Your Tools Inside Out
Make sure you’re well-versed in vulnerability management tools like Qualys. Be ready to discuss how you've used these tools in past roles, including specific examples of asset discovery and vulnerability scanning.
✨Understand the Vulnerability Lifecycle
Brush up on the entire vulnerability management lifecycle, from scanning to remediation. Be prepared to explain how you prioritise vulnerabilities based on risk scoring, such as CVSS, and how you’ve implemented remediation strategies.
✨Collaborate Like a Pro
This role involves working with various teams, so highlight your collaboration skills. Share examples of how you’ve worked with endpoint management or application management SMEs to drive remediation activities effectively.
✨Showcase Your Automation Skills
If you have experience with scripting or automation, especially in PowerShell or Python, make sure to mention it. Discuss any projects where you developed automation capabilities to improve efficiency in vulnerability management.
