At a Glance
- Tasks: Lead vulnerability management efforts and enhance cyber security across various platforms.
- Company: Join a forward-thinking organisation dedicated to cyber security excellence.
- Benefits: Flexible work schedule, competitive pay, and opportunities for professional growth.
- Other info: Collaborative environment with a focus on continuous improvement and innovation.
- Why this job: Make a real difference in protecting digital assets and reducing cyber risks.
- Qualifications: Experience with vulnerability management tools and a solid understanding of cyber security principles.
The predicted salary is between 50000 - 60000 £ per year.
The Vulnerability Management Subject Matter Expert (SME) is responsible for the design, delivery, and continuous improvement of the organisation’s vulnerability management service for End User Compute devices. The role focuses on utilising tools such as Qualys to identify, assess, prioritise, and support the remediation of vulnerabilities across infrastructure, endpoints, and cloud environments.
The SME ensures that vulnerabilities are effectively managed in line with organisational risk appetite and security standards, supporting a proactive approach to reducing cyber risk. This includes maintaining accurate vulnerability data, driving remediation activities, and ensuring alignment with governance, compliance, and audit requirements across the organisation.
Key Accountabilities
- Deliver and support vulnerability management capabilities using Qualys, including asset discovery, vulnerability scanning, and risk prioritisation.
- Analyse and interpret End User Compute vulnerability data, providing actionable insights and remediation recommendations.
- Collaborate with endpoint management and application management SMEs to action remediation activities.
- Monitor and report on vulnerability posture, risk exposure, and remediation performance across the organisation.
- Develop and maintain automation and reporting capabilities to improve efficiency and visibility of vulnerability management activities.
- Collaborate with cyber security, risk, and service management teams to ensure alignment with governance, compliance, and risk frameworks.
Skills, Knowledge & Experience
- Proven experience operating vulnerability management tools (e.g. Qualys) in an enterprise environment.
- Strong understanding of vulnerability management lifecycle, including scanning, prioritisation, and remediation.
- Knowledge of common security vulnerabilities, risk scoring (e.g. CVSS), and remediation approaches.
- Experience working with endpoint management tools like Intune and SCCM to support vulnerability remediation.
- Understanding of cyber security principles, risk management, and ITIL-based service management practices.
- Experience integrating vulnerability management tools with enterprise platforms (e.g. ServiceNow).
- Familiarity with cloud environments (e.g. Azure) and associated security considerations.
- Knowledge of patch management processes and tools.
- Scripting or automation experience (e.g. PowerShell, Python).
- Experience supporting audit, compliance, or regulatory requirements.
Information & Cyber Security Risk Consultant in Havant employer: Lorien
As an Information & Cyber Security Risk Consultant at our Havant location, you will thrive in a dynamic work environment that prioritises employee growth and development. We offer a collaborative culture where your expertise in vulnerability management will be valued, alongside opportunities for continuous learning and professional advancement. With flexible onsite arrangements and a commitment to maintaining a healthy work-life balance, we ensure that our employees feel supported and engaged in their roles.
StudySmarter Expert Advice🤫
We think this is how you could land Information & Cyber Security Risk Consultant in Havant
✨Tip Number 1
Network, network, network! Reach out to your connections in the cyber security field. Attend meetups or webinars related to vulnerability management. You never know who might have a lead on a job or can refer you directly to hiring managers.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your experience with tools like Qualys. This can be a great conversation starter during interviews and shows your hands-on expertise.
✨Tip Number 3
Prepare for interviews by brushing up on common vulnerability management scenarios. Be ready to discuss how you've handled vulnerabilities in past roles and how you prioritise risks. Practice makes perfect!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might just be the perfect fit for you. Plus, it’s a great way to get noticed by our recruitment team.
We think you need these skills to ace Information & Cyber Security Risk Consultant in Havant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the role of Vulnerability Management SME. Highlight your experience with tools like Qualys and any relevant projects you've worked on that showcase your skills in vulnerability management.
Showcase Your Skills:In your application, don’t just list your skills—show us how you’ve used them! Provide examples of how you've managed vulnerabilities or collaborated with other teams to improve security posture.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use bullet points where possible to make it easy for us to see your key achievements and experiences at a glance.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s the easiest way for us to track your application and ensure it reaches the right people!
How to prepare for a job interview at Lorien
✨Know Your Tools Inside Out
Make sure you’re well-versed in vulnerability management tools like Qualys. Be ready to discuss your hands-on experience with these tools, including how you've used them for asset discovery and vulnerability scanning. This will show that you can hit the ground running.
✨Understand the Vulnerability Lifecycle
Brush up on the entire vulnerability management lifecycle, from scanning to prioritisation and remediation. Be prepared to explain how you’ve applied this knowledge in past roles, especially in relation to risk scoring and remediation approaches.
✨Collaboration is Key
This role involves working closely with various teams, so be ready to share examples of how you’ve collaborated with endpoint management or application management SMEs. Highlight any successful projects where teamwork led to effective remediation activities.
✨Showcase Your Automation Skills
If you have experience with scripting or automation, such as PowerShell or Python, make sure to mention it. Discuss how you’ve developed automation capabilities to improve efficiency in vulnerability management, as this could set you apart from other candidates.
